CVE-2017-20274

Joomla LMS King Professional 3.2.4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the cpid parameter. Attackers can send GET requests to index.php with the option=comlmsking, view=lmsking,...

EUVD-2025-9614

Malicious code in bioql PyPI...

CVE-2025-22928

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the cpid parameter at /modules/messages/Inbox.php...

CVE-2025-22928

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the cpid parameter at /modules/messages/Inbox.php...

CVE-2025-22928

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the cpid parameter at /modules/messages/Inbox.php...

Open Solutions For Education openSIS 安全漏洞

Open Solutions For Education openSIS is an open source student information management system from Open Solutions For Education, USA. A security vulnerability exists in Open Solutions For Education openSIS versions v7.0 through v9.1, which stems from a SQL injection issue with the cpid parameter...

CVE-2025-22928

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the cpid parameter at /modules/messages/Inbox.php...

CVE-2025-22928

OS4ED openSIS v7.0–v9.1 contains a SQL injection in the Inbox module (cp_id parameter at /modules/messages/Inbox.php). Root cause: lack of input sanitization allowing crafted cp_id values to affect the underlying query. Impact is indicated as high (CVSS 3.1: CRITICAL, 9.8) with potential unauthen...

LMS King Professional Component SQL Injection Vulnerability in Joomla!

Joomla! is an open source, cross-platform content management system developed using PHP and MySQL. A SQL injection vulnerability exists in the cpid parameter in Joomla! LMS King Professional, which can be exploited by attackers to access or modify database data...