CVE-2021-41609
The connected sources confirm a SQL injection vulnerability (CVE-2021-41609) in ClassApps SelectSurvey.NET; the ID parameter of UploadedImageDisplay.aspx allows remote, unauthenticated attackers to retrieve data from the backend DB via boolean-based blind and UNION injections. Affected software: ...