Описание
Open Solutions for Education, Inc openSIS Community Edition v8.0 and earlier is vulnerable to SQL Injection via CalendarModal.php.
Ссылки
- ExploitPatchThird Party Advisory
- Product
- Vendor Advisory
- Patch
- Patch
- ExploitPatchThird Party Advisory
- Product
- Vendor Advisory
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 8.0 (включая)
cpe:2.3:a:os4ed:opensis:*:*:*:*:community:*:*:*
EPSS
Процентиль: 51%
0.00281
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-89
CWE-89
Связанные уязвимости
CVSS3: 6.5
github
почти 3 года назад
Open Solutions for Education, Inc openSIS Community Edition v8.0 and earlier is vulnerable to SQL Injection via CalendarModal.php.
EPSS
Процентиль: 51%
0.00281
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-89
CWE-89