4 matches found
CVE-2024-10546
The CVE-2024-10546 entry concerns open-scratch Teaching 在线教学平台 (versions up to 2.7). The vulnerability exists in the URL Handler’s API endpoint /api/sys/ng-alain/getDictItemsByTable/ and is due to an SQL injection in that API. It is exploitable remotely and an exploit has been disclosed publicly....
Information Leakage Vulnerability in Youmuzu Online Education Technology's Comprehensive Online Teaching Platform
Ltd. is a national high-tech enterprise, which was restructured and established at the end of 2014 by the former Digital Learning Research and Application Center of Institute of Educational Technology, Tsinghua University, and the series of scientific research results and technical support team o...
SQL Injection Vulnerability in CCTV Online Teaching Platform
CCTV Digital Resource Teaching Platform is a platform for flexible lesson preparation and convenient teaching created for schools by Nanjing 55th Technology Development Co. A SQL injection vulnerability exists in the CCTF Online Network Teaching Platform. An attacker can use this vulnerability to...
SQL Injection Vulnerability in Online Teaching Platform of Higher Education Publishing House
The Higher Education Publishing House Online Teaching Platform is a system that provides online teaching and learning. A SQL injection vulnerability exists in the Higher Education Publishing House Network Teaching Platform, which can be exploited by attackers to obtain sensitive information from...