How severe is CVE-2024-12891?

CVE-2024-12891 has a CVSS v3 score of 6.3 (MEDIUM).

CVE-2024-12891

Name: online_exam_mastering_system
Author: code-projects

6.3MEDIUM

A vulnerability classified as critical has been found in code-projects Online Exam Mastering System 1.0. Affected is an unknown function of the file /account.php?q=quiz&step=2. The manipulation of the

Published: 12/22/2024Updated: 4/3/2025

Description

A vulnerability classified as critical has been found in code-projects Online Exam Mastering System 1.0. Affected is an unknown function of the file /account.php?q=quiz&step=2. The manipulation of the argument eid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AI AnalysisPowered by AI

Affected Products

code-projectsonline_exam_mastering_system

1.0

References

https://code-projects.org/
Product
https://hackmd.io/@salt9487/BkeSOxQSye
ExploitThird Party Advisory
https://vuldb.com/?ctiid.289152
Permissions RequiredVDB Entry
https://vuldb.com/?id.289152
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.467124
Third Party AdvisoryVDB Entry
https://hackmd.io/@salt9487/BkeSOxQSye
ExploitThird Party Advisory