Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A SQL injection vulnerability was found in the assignInstructorSubjects.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that attackers can inject malicious code via the parameter "subjcode" and use it directly in SQL queries without the need for appropriate cleaning or validation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
itsourcecode Online Student Enrollment System 安全漏洞
Vulnerability Description
itsourcecode Online Student Enrollment System是itsourcecode开源的一个网上招生系统。 itsourcecode Online Student Enrollment System 1.0版本存在安全漏洞,该漏洞源于assignInstructorSubjects.php文件中subjcode参数未经适当清理或验证直接用于SQL查询,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A