CVE Report: [CVE-2024-44630] Basic Information CVE ID: CVE-2024-44630 Product: Student Record Management System PHP Vendor: PHPGurukul Affected Version: V3.20 Vulnerability Type: SQL Injection Description Multiple parameters in in PHPGurukul Student Record System 3.20 are vulnerable to SQL injection. These include: , , , , , , , , , , , , , , , , , , , , , , , , , , , and . Proof of Concept (PoC) The attacker can exploit the vulnerability by injecting SQL queries through vulnerable parameters. Additionally, the attacker uses a time-based payload (e.g., ) to prevent the server from responding to benign users. References https://phpgurukul.com/student-record-system-php