SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bmonth parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.
                
            Metrics
Affected Vendors & Products
Advisories
    | Source | ID | Title | 
|---|---|---|
  EUVD | 
                EUVD-2020-27272 | SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bmonth parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | 
Fixes
    Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
        History
                    No history.
Status: PUBLISHED
Assigner: talos
Published:
Updated: 2024-08-04T08:55:20.847Z
Reserved: 2020-01-07T00:00:00
Link: CVE-2020-6118
No data.
Status : Modified
Published: 2020-09-01T14:15:13.707
Modified: 2024-11-21T05:35:08.683
Link: CVE-2020-6118
No data.
                        OpenCVE Enrichment
                    No data.
 EUVD