Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A SQL injection vulnerability was found in the instructorClasses.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'classId' parameter from $_GET['classId'] is directly concatenated into the SQL query without any sanitization or validation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
itsourcecode Online Student Enrollment System 安全漏洞
Vulnerability Description
itsourcecode Online Student Enrollment System是itsourcecode开源的一个网上招生系统。 itsourcecode Online Student Enrollment System 1.0版本存在安全漏洞,该漏洞源于instructorClasses.php文件中classId参数未经清理或验证直接拼接至SQL查询,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A