VYPR
Unrated severityNVD Advisory· Published Oct 27, 2024· Updated Oct 28, 2024

Project Worlds Student Project Allocation System Project Selection Page move_up_project.php sql injection

CVE-2024-10425

Description

A vulnerability was found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /student/project_selection/move_up_project.php of the component Project Selection Page. The manipulation of the argument up leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.