SQL injection vulnerability in the typeId parameter of news_list.jsp file of Shangli K12 digital campus management platform.
Shangli K12 Digital Campus Management Platform is an integrated campus solution. A SQL injection vulnerability exists in the typeId parameter of the newslist.jsp file in the K12 digital campus management platform. The vulnerability is due to the system typeId parameter does not filter the data...