Unrated severityNVD Advisory· Published Jun 25, 2025· Updated Jun 25, 2025

CVE-2024-27685

Description

SQL Injection vulnerability in Student Record system Using PHP and MySQL v.3.20 allows a remote attacker to obtain sensitive information via a crafted payload to the $cshortname, $cfullname, and $cdate variables.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Student Record system/Student Record systemdescription
Student Record system/Student Record system Using PHP and MySQLllm-create
Range: = 3.20

Patches

Vulnerability mechanics

References

medium.com/@cnetsec/a-sql-injection-vulnerability-exists-in-the-student-record-system-using-php-and-mysql-v3-20-df2c6fe7dc15mitre
phpgurukul.com/student-record-system-php/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000