Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Due to lack of protection, parameter student_id in OpenSIS Classic 8.0 /modules/eligibility/Student.php can be used to inject SQL queries to extract information from databases.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
openSIS SQL注入漏洞
Vulnerability Description
Open Solutions For Education openSIS是美国Open Solutions For Education公司的一套开源的学生信息管理系统。 openSIS 8.0 版本存在SQL注入漏洞,该漏洞源于 /modules/eligibility/Student.php 中的参数 student_id 可用于SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A