Vulnerability CVE-2024-41238
Published: 2024-08-08

Description:
A SQL injection vulnerability in /smsa/student_login.php in Kashipara Responsive School Management System v1.0 allows an attacker to execute arbitrary SQL commands via the "username" parameter.

 References:
https://www.kashipara.com/project/php/12362/responsive-school-management-system-php-project-source-code
https://github.com/takekaramey/CVE_Writeup/blob/main/Kashipara/Responsive%20School%20Management%20System%20v3.2.0/SQL%20Injection%20-%20Student.pdf
Copyright 2026, cxsecurity.com

 

Back to Top