SQL Injection Vulnerability in YxtCMF Online Learning System
YxtCMF online learning system is an online learning platform system developed with thinkphp+bootstrap as the framework. YxtCMF Online Learning System is vulnerable to SQL injection. The lack of filtering due to the '$state=I"get.state";' parameter allows an attacker to exploit the vulnerability t...