6 matches found
CVE-2021-39378
A SQL Injection vulnerability exists in openSIS 8.0 when MySQL MariaDB is being used as the application database. A malicious attacker can issue SQL commands to the MySQL MariaDB database through the NamesList.php str parameter...
openSIS SQL Injection Vulnerability (CNVD-2021-93903)
openSIS is a free and open source student information system/school management software. openSIS version 8.0 is vulnerable to SQL injection when using MySQL MariaDB as the application database. The vulnerability can be exploited to issue SQL commands to the MySQL MariaDB database via the...
CVE-2021-39378
A SQL Injection vulnerability exists in openSIS 8.0 when MySQL MariaDB is being used as the application database. A malicious attacker can issue SQL commands to the MySQL MariaDB database through the NamesList.php str parameter...
Sql injection
A SQL Injection vulnerability exists in openSIS 8.0 when MySQL MariaDB is being used as the application database. A malicious attacker can issue SQL commands to the MySQL MariaDB database through the NamesList.php str parameter...
CVE-2021-39378
A SQL Injection vulnerability exists in openSIS 8.0 when MySQL MariaDB is being used as the application database. A malicious attacker can issue SQL commands to the MySQL MariaDB database through the NamesList.php str parameter...
CVE-2021-39378
CVE-2021-39378 affects openSIS 8.0 when using MySQL/MariaDB. A SQL Injection vulnerability allows an attacker to issue SQL commands to the database through the NamesList.php str parameter, with CVSS v3.1 base score 9.8 (CRITICAL) and impact on confidentiality, integrity, and availability reported...