RSS   Vulnerabilities for 'Online course registration'   RSS

2020-04-28
 
CVE-2020-12429

CWE-89
 

 
Online Course Registration 2.0 has multiple SQL injections that would can lead to a complete database compromise and authentication bypass in the login pages: admin/change-password.php, admin/check_availability.php, admin/index.php, change-password.php, check_availability.php, includes/header.php, index.php, and pincode-verification.php.

 

 >>> Vendor: Phpgurukul 11 Products
Hospital management system in php
Hostel management system
Small crm
Daily expense tracker system
Phpgurukul online book store
Phpgurukul job portal
Online course registration
Student record system
Directory management system
Teacher subject allocation management system
Nipah virus testing management system


Copyright 2024, cxsecurity.com

 

Back to Top