SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bday parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2020-09-01T13:51:01
Updated: 2024-08-04T08:55:20.847Z
Reserved: 2020-01-07T00:00:00
Link: CVE-2020-6117
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-09-01T14:15:13.597
Modified: 2024-11-21T05:35:08.557
Link: CVE-2020-6117
Redhat
No data.