The Easytest contains SQL injection vulnerabilities. After obtaining a user’s privilege, remote attackers can inject SQL commands into the parameters of the elective course management page to obtain all database and administrator permissions.
CPE | Name | Operator | Version |
---|---|---|---|
easytest_online_learning_test_platform | eq | 1705 |