Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An authentication bypass vulnerability in all versions of ValuePLUS Integrated University Management System (IUMS) allows unauthenticated, remote attackers to gain administrator privileges via the Teachers Web Panel (TWP) User ID or Password field. If exploited, the attackers could perform any actions with administrator privileges (e.g., enumerate/delete all the students' personal information or modify various settings).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ValuePLUS Computer Systems Integrated University Management System SQL注入漏洞
Vulnerability Description
ValuePLUS Computer Systems Integrated University Management System(IUMS)是孟加拉国ValuePLUS Computer Systems公司的一套高校综合管理系统。该系统包括招生管理、会计、人事管理、工资管理等功能。 ValuePLUS Computer Systems IUMS中存在SQL注入漏洞,该漏洞源于基于数据库的应用缺少对外部输入SQL语句的验证。攻击者可利用该漏洞执行非法SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A