CVE-2020-6124

An exploitable sql injection vulnerability exists in the email parameter functionality of OS4Ed openSIS 7.3. The email parameter in the page EmailCheckOthers.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.
References
Link Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1073 Exploit Technical Description
Configurations

Configuration 1

cpe:2.3:a:os4ed:opensis:7.3:*:*:*:*:*:*:*

Information

Published : 2020-09-01 03:15

Updated : 2022-05-31 08:03


NVD link : CVE-2020-6124

Mitre link : CVE-2020-6124

Products Affected
No products.
CWE