Vulnerability CVE-2023-25432


Published: 2023-02-28

Description:
An issue was discovered in Online Reviewer Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via reviewer_0/admins/assessments/course/course-update.php.

 References:
https://github.com/hundanchen69/bug_report/blob/main/vendors/janobe/Online%20Reviewer%20Management%20System/SQLi-1.md

Copyright 2026, cxsecurity.com

 

Back to Top