2 matches found
openSIS SQL Injection Vulnerability (CNVD-2020-50531)
openSIS is a free, open source student information system/school management software. A SQL injection vulnerability exists in the fn parameter in CheckDuplicateStudent.php in openSIS 7.3. An attacker can exploit this vulnerability by sending an HTTP request to perform a SQL injection attack...
IBM Sterling File Gateway Information Disclosure Vulnerability (CNVD-2019-34605)
IBM Sterling File Gateway is a suite of file transfer software from IBM in the United States. The software integrates different centers of file transfer activity and facilitates the secure exchange of file-based data over the Internet. An information disclosure vulnerability exists in IBM Sterlin...