Lucene search
+L

4 matches found

NVD
NVD
added 2020/09/01 2:15 p.m.11 views

CVE-2020-6121

SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The ln parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.7AI score0.01403EPSS
Exploits1References1
OSV
OSV
added 2020/09/01 2:15 p.m.11 views

CVE-2020-6121

SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The ln parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS8AI score
Exploits0References1
CVE
CVE
added 2020/09/01 1:57 p.m.41 views

CVE-2020-6121

OS4Ed openSIS 7.3 is affected by multiple SQL injection vulnerabilities in CheckDuplicateStudent.php. The vulnerabilities concern parameters fn, mn, ln, byear, bmonth, and bday, which can be injected to alter SQL queries used to locate existing students. Talos documents exploit paths involving co...

8.8CVSS9.1AI score0.01403EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2020/08/31 12:0 a.m.112 views

OS4Ed openSIS CheckDuplicateStudent.php page SQL injection vulnerability

Talos Vulnerability Report TALOS-2020-1072 OS4Ed openSIS CheckDuplicateStudent.php page SQL injection vulnerability August 31, 2020 CVE Number CVE-2020-6117,CVE-2020-6119,CVE-2020-6121,CVE-2020-6118,CVE-2020-6120,CVE-2020-6122 SUMMARY Multiple exploitable SQL injection vulnerabilities exist in th...

8.8CVSS8.1AI score0.01403EPSS
Exploits6
Rows per page
Query Builder