NEMU 安全漏洞

NEMU is an open-source teaching system simulator developed by XiangShan. NEMU has a security vulnerability, which stems from insufficient Smstateen permissions. This vulnerability may allow low-privilege code access to IMSIC state, potentially leading to cross-context information leaks or...

Relate Learning And Teaching System SSTI / Remote Code Execution

Exploit Title: Relate Learning And Teaching system Version before 2024.1 SSTIMarkup Sandbox function lead to RCE Date: 19/04/2024 Exploit Author: kai6u Vendor Homepage: https://github.com/inducer/ Software Link: https://github.com/inducer/relate Affected Version:before 2024.1...

edusrc_POC

This repository contains a collection of Python scripts, each designed to exploit vulnerabilities in various web applications. The scripts are written in Chinese and appear to be intended for use on Chinese-language systems. The scripts are categorized into several groups, each targeting a specif...

SQL Injection Vulnerability in Penta's Academic Affairs System

Shanghai Pengda Computer System Development Co., Ltd. is a company dedicated to vocational education informatization solutions, products involved in education management, teaching applications, teaching services and other areas. SQL injection vulnerability exists in Pangda's teaching system, whic...

Information leakage vulnerability in de***.php file of Dandelion online teaching system

Dandelion Online Teaching System is the website of Shenzhen Tomorrow See Technology Co., Ltd, which is an innovative science and technology enterprise focusing on the research and development of videoconferencing, video teaching and telemedicine system. There is an information leakage vulnerabili...

SQL Injection Vulnerability in Frontend Li*** Routing File of Dandelion Online Teaching System

Dandelion Online Teaching System is the website of Shenzhen Tomorrow See Technology Co., Ltd, which is an innovative science and technology enterprise focusing on the research and development of videoconferencing, video teaching and telemedicine system. Dandelion Online Teaching System has a SQL...

SQL Injection Vulnerability in Experimental Teaching Intelligent Management System of Nanjing Xianji Technology Co.

Nanjing Xianji Technology Co., Ltd. experimental teaching intelligent management system is a set of teaching quality software system established for colleges and universities. A SQL injection vulnerability exists in the Experimental Teaching Intelligent Management System of Nanjing Aptar Technolo...

Remote Code Execution Vulnerability in Classroom Teaching System

Classroom Client is software that assists primary and secondary school teachers in electronic lesson planning. A generic remote code execution vulnerability exists in the Bantong teaching system. An attacker can exploit the vulnerability to execute arbitrary code and gain control of the web serve...

PowerCreator online teaching system OpenCourse_new. aspx, etc. 2 SQL injection vulnerability

No description provided by source...

SQL Injection Vulnerability in the Teaching System of Beijing Oriental Centaline Education Technology Co.

Oriental Centrum is a developer, supplier and solution provider in the field of multimedia display and interactive teaching applications. A SQL injection vulnerability exists in the teaching system of Beijing Oriental Centrum Education Technology Co. Ltd. where an attacker can obtain database...

A teaching system of the present injection vulnerability

Brief description: RT Detailed description: SQL injection file: /anmai/SFManage/lookbookpreeshow. aspx Case: http://218.78.241.80/anmai/SFManage/lookbookpreeshow.aspx?year1=1 http://jmzx.xmedu.cn:9999/anmai/SFManage/lookbookpreeshow.aspx?year1=1...

上海安脉教学系统存在注入漏洞

简要描述： RT 详细说明： SQL注入文件： /anmai/KYMamage/IntegrateSelect/OutlayPayoutSelectparticular.aspx SQL注入案例： http://218.78.241.80/anmai/KYMamage/IntegrateSelect/OutlayPayoutSelectparticular.aspx?id=1 http://jmzx.xmedu.cn:9999/anmai/KYMamage/IntegrateSelect/OutlayPayoutSelectparticular.aspx?id=1...