4 matches found
CVE-2021-40353
A SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as the application database. An attacker can then issue the SQL command through the index.php USERNAME parameter. NOTE: this issue may exist because of an incomplete fix for CVE-2020-6637...
CVE-2021-40353
A SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as the application database. An attacker can then issue the SQL command through the index.php USERNAME parameter. NOTE: this issue may exist because of an incomplete fix for CVE-2020-6637...
CVE-2021-40353
OpenSIS CVE-2021-40353 affects OpenSIS 8.0 when using MySQL/MariaDB. The vulnerability is an SQL injection exploitable via the USERNAME parameter on index.php, consistent with prior CVE-2020-6637 fixes. Connected sources (NVD entry and related CVE records) confirm the vulnerable entry points and ...
Exploit for SQL Injection in Os4Ed Opensis
CVE-2021-40353 CVE-2021-40353 openSIS 8.0 SQL Injection Vulner...