SQL Injection Vulnerability in ry_type Parameter of SSF Digital Management One-Stop System for Primary and Secondary Schools ry_list.asp Page

The SSF One-Stop Shop for Digital Management in Primary and Secondary Schools consists of an external website, a blog for teachers and students, and three internal platforms Teachers' Platform, Students' Platform and Parents' Platform. The product has a SQL injection vulnerability, the...

SQL Injection Vulnerability in ry_whoisid Parameter of SSF Digital Management One-Stop System for Primary and Secondary Schools ry_list.asp Page

The SSF One-Stop Shop for Digital Management in Primary and Secondary Schools consists of an external website, a blog for teachers and students, and three internal platforms Teachers' Platform, Students' Platform and Parents' Platform. The product has a SQL injection vulnerability, the...

SQL Injection Vulnerability in SSF Digital Management One-Stop System for Primary and Secondary Schools

SSF One-Stop Shop for Digital Management in Primary and Secondary Schools comprises an external website, a blog for teachers and students, and three internal platforms teachers' platform, students' platform, parents' platform There is a SQL injection vulnerability in this product, the vulnerabili...

Site@School slideshow_full.php album_name Parameter SQL Injection

The remote host is running Site@School, an open source, PHP-based, content management system intended for primary schools. The version of this software installed on the remote host fails to sanitize user-supplied input to the 'albumname' parameter of the 'starnet/addons/slideshowfull.php' script...