Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the $courseid and $teacherid parameters at DeleteFunctions.php.
https://sourceforge.net/projects/schoolmate
https://github.com/KLSEHB/vulnerability-report/blob/main/Schoolmate_CVE-2023-39850