6 matches found
ClassSystem 2.0/2.3 - HomepageTop.php teacher_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection vulnerabilities and an...
Sql injection
Multiple SQL injection vulnerabilities in ClassSystem 2.3 allow remote attackers to execute arbitrary SQL commands via the teacherid parameter in 1 class/HomepageMain.php and 2 class/HomepageTop.php, and 3 the messageid parameter in class/MessageReply.php...
CVE-2008-6618
Multiple SQL injection vulnerabilities in ClassSystem 2.3 allow remote attackers to execute arbitrary SQL commands via the teacherid parameter in 1 class/HomepageMain.php and 2 class/HomepageTop.php, and 3 the messageid parameter in class/MessageReply.php...
CVE-2008-6618
Multiple SQL injection vulnerabilities in ClassSystem 2.3 allow remote attackers to execute arbitrary SQL commands via the teacherid parameter in 1 class/HomepageMain.php and 2 class/HomepageTop.php, and 3 the messageid parameter in class/MessageReply.php...
ClassSystem 2.0/2.3 - 'HomepageTop.php?teacher_id' SQL Injection
source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection vulnerabilities and an arbitrary-file-upload vulnerability. Exploiting...
ClassSystem 2.02.3 - HomepageTop.php?teacher_id SQL Injection
ClassSystem 2.02.3 - HomepageTop.php?teacherid SQL Injection source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection...