16 matches found
📄 openSIS Classic 9.2 Path Traversal
openSIS Classic version 9.2 suffers from a path traversal vulnerability that allows for local file inclusion. ============================================================================================================================================= | Title : openSIS Classic v 9.2 Path Traversa...
EUVD-2020-19920
Malware in sbrugna...
EUVD-2009-0595
Malware in sbrugna...
CVE-2020-27409
OpenSIS Community Edition before 7.5 is affected by a cross-site scripting XSS vulnerability in SideForStudent.php via the modname parameter...
CVE-2021-40651
OS4Ed OpenSIS Community 8.0 is vulnerable to a local file inclusion vulnerability in Modules.php modname parameter, which can disclose arbitrary file from the server's filesystem as long as the application has access to the file...
OpenSIS 8.0 'modname' - Directory Traversal
Exploit Title: OpenSIS 8.0 'modname' - Directory/Path Traversal Date: 09-02-2021 Exploit Author: Eric Salario Vendor Homepage: http://www.os4ed.com/ Software Link: https://opensis.com/download Version: 8.0 Tested on: Windows, Linux CVE: CVE-2021-40651 The 'modname' parameter in the 'Modules.php' ...
CVE-2020-27409
OpenSIS Community Edition before 7.5 is affected by a cross-site scripting XSS vulnerability in SideForStudent.php via the modname parameter...
CVE-2020-27409
OpenSIS Community Edition before 7.5 is affected by a cross-site scripting XSS vulnerability in SideForStudent.php via the modname parameter...
Cross site scripting
OpenSIS Community Edition before 7.5 is affected by a cross-site scripting XSS vulnerability in SideForStudent.php via the modname parameter...
CVE-2020-27409
OpenSIS Community Edition before 7.5 is affected by a cross-site scripting XSS vulnerability in SideForStudent.php via the modname parameter...
OpenSIS Community Edition Cross-Site Scripting Vulnerability
Open Solutions For Education openSIS is an open source student information management system from Open Solutions for Education Open Solutions For Education. A cross-site scripting vulnerability exists in OpenSIS Community Edition versions prior to 7.5, which stems from being affected by the...
CVE-2013-1349
Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 allows remote attackers to execute arbitrary PHP code via the modname parameter...
Sql injection
Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 allows remote attackers to execute arbitrary PHP code via the modname parameter...
CVE-2013-1349
Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 allows remote attackers to execute arbitrary PHP code via the modname parameter...
Directory traversal
Multiple directory traversal vulnerabilities in PNphpBB2 1.2i and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in the ModName parameter to 1 adminwords.php, 2 admingroupsreapir.php, 3 adminsmilies.php, 4 adminranks.php, 5 adminstyles.php, and 6...
CVE-2009-0592
Multiple directory traversal vulnerabilities in PNphpBB2 1.2i and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in the ModName parameter to 1 adminwords.php, 2 admingroupsreapir.php, 3 adminsmilies.php, 4 adminranks.php, 5 adminstyles.php, and 6...