2 matches found
CVE-2023-45119
CVE-2023-45119 concerns Online Examination System v1.0. The vulnerability is an authenticated SQL Injection in the /update.php?q=quiz endpoint, where the value of the parameter n is not validated and is passed unfiltered to the database. This exposes the system to potentially arbitrary SQL execut...
CVE-2023-45119 Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi)
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'n' parameter of the /update.php?q=quiz resource does not validate the characters received and they are sent unfiltered to the database...