Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A SQL Injection was found in the /exam/user/profile.php page of kashipara Online Exam System V1.0, which allows remote attackers to execute arbitrary SQL command to get unauthorized database access via the rname, rcollage, rnumber, rgender and rpassword parameters in a POST HTTP request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kashipara Online Exam System 安全漏洞
Vulnerability Description
Kashipara Online Exam System是Kashipara公司的一个在线考试系统。 kashipara Online Exam System V1.0版本存在安全漏洞,该漏洞源于/exam/user/profile.php页面中rname、rcollage、rnumber、rgender和rpassword参数未经验证,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A