3 matches found
CVE-2024-43772
SQL Injection in download student learning course function of Easytest Online Test Platform ver.24E01 and earlier allow remote attackers to execute arbitrary SQL commands via the uid parameter...
PT-2024-30646 · Unknown · Easytest Online Test Platform
Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in the download personal learning course function. This enables attacker...
PT-2024-30644 · Unknown · Easytest Online Test Platform
Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions prior to ver.24E01 Description: The issue allows remote attackers to execute arbitrary SQL commands via the uid parameter in the download student learning course function. This enables attackers to...