6 matches found
Huachu Digital Easytest Online Test Platform 安全漏洞
Huachu Digital Easytest Online Test Platform is an online test platform from Huachu Digital. A security vulnerability exists in Huachu Digital Easytest Online Test Platform version ver.24E01 and prior versions, which is caused by a SQL injection vulnerability in the download personal learning...
Huachu Digital Easytest Online Test Platform 安全漏洞
Huachu Digital Easytest Online Test Platform is an online test platform from Huachu Digital. A security vulnerability exists in Huachu Digital Easytest Online Test Platform version 24E01 and prior versions, which originates from allowing remote authenticated users to execute arbitrary SQL command...
PT-2024-38648 · Unknown · Easytest Online Test Platform
Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands via the word parameter in the online dictionary function. This can potentially lead to...
PT-2024-30646 · Unknown · Easytest Online Test Platform
Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in the download personal learning course function. This enables attacker...
PT-2024-30645 · Unknown · Easytest Online Test Platform
Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands via the cstr parameter in the download class learning course function. This enables attackers to...
PT-2024-30647 · Unknown · Easytest Online Test Platform
Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands via the search parameter in the search course titles function. This enables attackers to run...