CVE-2024-9037

Name of the Vulnerable Software and Affected Versions Codezips Internal Marks Calculation version 1.0

Description A critical vulnerability has been found in the software, affecting an unknown function of the file index.php. The manipulation of the tid argument leads to SQL injection, allowing for remote attacks. The exploit has been publicly disclosed.

Recommendations For Codezips Internal Marks Calculation version 1.0, consider disabling the unknown function in the file index.php that is affected by the SQL injection vulnerability until a patch is available. Restrict access to the tid argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.