cve/CVE-2021-40353.md at b50325b7a339fb96f218f7b1a001c5a2ad067468

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

A SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as the application database. An attacker can then issue the SQL command through the index.php USERNAME parameter. NOTE: this issue may exist because of an incomplete fix for CVE-2020-6637.

POC

Reference

No PoCs from references.

Github

https://github.com/20142995/nuclei-templates
https://github.com/5qu1n7/CVE-2021-40353
https://github.com/ARPSyndicate/cvemon
https://github.com/cyb3r-w0lf/nuclei-template-collection
https://github.com/n0-traces/cve_monitor

935 B Raw Blame History

CVE-2021-40353

Description

POC

Reference

Github

935 B

Raw Blame History