High
CVSS 8.8
Overview
Student Attendance Management System v1 was discovered to contain multiple SQL injection vulnerabilities in createSessionTerm.php via the id, termId, and sessionName parameters.
CVE-2023-41521
Student Attendance Management System v1 was discovered to contain multiple SQL i...
Risk analysis
This vulnerability is rated 🟠 HIGH.
- CVSS: 8.8 (HIGH)
- Detected tags: sql (tag impact: MODERATE)
Recommended actions:
- Use parameterized queries/ORM (avoid string concatenation).
- Add WAF rules and input validation.