RSS   Vulnerabilities for 'Opensis'   RSS

2021-09-01
 
CVE-2021-39378

CWE-89
 

 
A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the application database. A malicious attacker can issue SQL commands to the MySQL (MariaDB) database through the NamesList.php str parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top