CVE-2020-6124
CVE-2020-6124 describes an exploitable SQL injection in OS4Ed openSIS 7.3, affecting the email parameter handling in two scripts: EmailCheckOthers.php and EmailCheck.php . The vulnerability allows an attacker to trigger SQL Injection via authenticated HTTP requests that supply crafted email value...