33 matches found
CVE-2025-65594
OpenSIS 9.2 and below is vulnerable to Incorrect Access Control in Student.php, which allows an authenticated low-privilege user to perform unauthorized database write operations relating to the data of other users...
Open Solutions For Education openSIS 安全漏洞
Open Solutions For Education openSIS is an open source student information management system from Open Solutions For Education, USA. A security vulnerability exists in Open Solutions For Education openSIS version 9.2 and prior versions, which stems from improper access control and could lead to...
EUVD-2021-25737
Malware in sbrugna...
EUVD-2025-9612
Malicious code in bioql PyPI...
EUVD-2021-27810
Malicious code in bioql PyPI...
EUVD-2025-9653
Malicious code in bioql PyPI...
EUVD-2025-21461
Malicious code in bioql PyPI...
EUVD-2025-9613
Malicious code in bioql PyPI...
EUVD-2025-10711
Malicious code in bioql PyPI...
EUVD-2023-42650
Malicious code in bioql PyPI...
EUVD-2025-9610
Malicious code in bioql PyPI...
CVE-2025-26186
SQL Injection vulnerability in openSIS v.9.1 allows a remote attacker to execute arbitrary code via the id parameter in Ajax.php...
CVE-2025-26186
SQL Injection vulnerability in openSIS v.9.1 allows a remote attacker to execute arbitrary code via the id parameter in Ajax.php...
CVE-2025-26186
SQL Injection vulnerability in openSIS v.9.1 allows a remote attacker to execute arbitrary code via the id parameter in Ajax.php...
CVE-2025-22926
An issue in OS4ED openSIS v8.0 through v9.1 allows attackers to execute a directory traversal by sending a crafted POST request to /Modules.php?modname=messaging/Inbox.php&modfunc=save&filename...
CVE-2025-22927
An issue in OS4ED openSIS v8.0 through v9.1 allows attackers to execute a directory traversal by sending a crafted POST request to /Modules.php?modname=messaging/Inbox.php&modfunc=save&filename...
Open Solutions For Education OS4Ed OpenSIS 安全漏洞
Open Solutions For Education OS4Ed OpenSIS is commercial grade, secure, scalable and intuitive student information system, school management software from Open Solutions For Education, USA. Has all the features to run single or multiple organizations in one installation. Web-based, php code, MySQ...
CVE-2025-22930
OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the groupid parameter at /messaging/Group.php...
Open Solutions For Education openSIS 安全漏洞
Open Solutions For Education openSIS is an open source student information management system from Open Solutions For Education, USA. A security vulnerability exists in Open Solutions For Education openSIS versions v7.0 through v9.1, which stems from a SQL injection issue with the groupid paramete...
CVE-2025-22928
OS4ED openSIS v7.0–v9.1 contains a SQL injection in the Inbox module (cp_id parameter at /modules/messages/Inbox.php). Root cause: lack of input sanitization allowing crafted cp_id values to affect the underlying query. Impact is indicated as high (CVSS 3.1: CRITICAL, 9.8) with potential unauthen...