← Back to CVE List

CVE-2025-2351

Published: 2025-03-16T23:15Z
Last Modified: 2025-03-16T23:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A vulnerability classified as critical was found in DayCloud StudentManage 1.0. This vulnerability affects unknown code of the file /admin/adminScoreUrl of the component Login Endpoint. The manipulation of the argument query leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt