Sql injection

2021-10-1512:15:00

PRIOn knowledge base

www.prio-n.com

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.5%

JSON

The Easytest contains SQL injection vulnerabilities. After obtaining a user’s privilege, remote attackers can inject SQL commands into the parameters of the elective course management page to obtain all database and administrator permissions.

CPENameOperatorVersion
easytest_online_learning_test_platformeq1705

CPE	Name	Operator	Version
	easytest_online_learning_test_platform	eq	1705

References

www.twcert.org.tw/tw/cp-132-5204-f80ad-1.html