Description
eClass platform < ip.2.5.10.2.1 allows an attacker to execute SQL command via /admin/academic/studenview_left.php StudentID parameter.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| BroadLearning | eclass | affected |
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2019-19241 | eClass platform < ip.2.5.10.2.1 allows an attacker to execute SQL command via /admin/academic/studenview_left.php StudentID parameter. |
References
History
Tue, 17 Sep 2024 00:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | eClass platform contains a SQL injection vulnerability | eClass platform contains a SQL injection vulnerability |
MITRE
Status: PUBLISHED
Assigner: twcert
Published:
Updated: 2024-09-17T00:31:21.052Z
Reserved: 2019-03-19T00:00:00.000Z
Link: CVE-2019-9885
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-07-25T17:15:14.550
Modified: 2024-11-21T04:52:30.553
Link: CVE-2019-9885
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses