CVE-2024-54926

A SQL Injection vulnerability was found in /search_class.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the school_year parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt