MidnightBSD

Advisories for dino_physics_school_assistant_project

CVE-2024-35349

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /admin/category/view_category.php. Manipulating the argument id can result in SQL injection.

Products Affected

Vendor Product Version
dino_physics_school_assistant_project dino_physics_school_assistant 2.3
CVE-2024-35359

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=view_item. Manipulating the argument id can result in SQL injection.

Products Affected

Vendor Product Version
dino_physics_school_assistant_project dino_physics_school_assistant 2.3