cve/CVE-2020-6134.md at eda58812c5773678e9432b65209fee245db925e7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

SQL injection vulnerabilities exist in the ID parameters of OS4Ed openSIS 7.3 pages. The id parameter in the page MassDropModal.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

POC

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1077
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1077

Github

https://github.com/404notf0und/CVE-Flow

924 B Raw Blame History

CVE-2020-6134

Description

POC

Reference

Github

924 B

Raw Blame History