CVEs-PoC/2020/CVE-2020-6127.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 15:15:46 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

SQL injection vulnerability exists in the CoursePeriodModal.php page of OS4Ed openSIS 7.3. The id parameter in the page CoursePeriodModal.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

POC

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1075

Github

https://github.com/404notf0und/CVE-Flow

863 B Raw Blame History

CVE-2020-6127

Description

POC

Reference

Github

863 B

Raw Blame History