CVE-2010-5011
SchoolMation 2.3 - SQL Injection
Title source: llmDescription
SQL injection vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allows remote attackers to execute arbitrary SQL commands via the session parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Sid3^effects · textwebappsphp
https://www.exploit-db.com/exploits/13812
References (5)
Scores
EPSS
0.0045
EPSS Percentile
63.2%
Classification
CWE
CWE-89
Status
draft
Affected Products (1)
schoolmation/schoolmation
Timeline
Published
Nov 02, 2011
Tracked Since
Feb 18, 2026