Filtered by vendor Os4ed
Subscriptions
Total
65 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-38885 | 1 Os4ed | 1 Opensis | 2023-11-30 | 8.8 High |
OpenSIS Classic Community Edition version 9.0 lacks cross-site request forgery (CSRF) protection throughout the whole app. This may allow an attacker to trick an authenticated user into performing any kind of state changing request. | ||||
CVE-2023-38884 | 1 Os4ed | 1 Opensis | 2023-11-30 | 7.5 High |
An Insecure Direct Object Reference (IDOR) vulnerability in the Community Edition version 9.0 of openSIS Classic allows an unauthenticated remote attacker to access any student's files by visiting '/assets/studentfiles/<studentId>-<filename>' | ||||
CVE-2023-38883 | 1 Os4ed | 1 Opensis | 2023-11-30 | 6.1 Medium |
A reflected cross-site scripting (XSS) vulnerability in the Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'ajax' parameter in 'ParentLookup.php'. | ||||
CVE-2023-38882 | 1 Os4ed | 1 Opensis | 2023-11-30 | 6.1 Medium |
A reflected cross-site scripting (XSS) vulnerability in the Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'include' parameter in 'ForExport.php' | ||||
CVE-2023-38881 | 1 Os4ed | 1 Opensis | 2023-11-30 | 6.1 Medium |
A reflected cross-site scripting (XSS) vulnerability in the Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into any of the 'calendar_id', 'school_date', 'month' or 'year' parameters in 'CalendarModal.php'. | ||||
CVE-2023-38879 | 1 Os4ed | 1 Opensis | 2023-11-30 | 7.5 High |
The Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to read arbitrary files via a directory traversal vulnerability in the 'filename' parameter of 'DownloadWindow.php'. | ||||
CVE-2023-38880 | 1 Os4ed | 1 Opensis | 2023-11-30 | 9.8 Critical |
The Community Edition version 9.0 of OS4ED's openSIS Classic has a broken access control vulnerability in the database backup functionality. Whenever an admin generates a database backup, the backup is stored in the web root while the file name has a format of "opensisBackup<date>.sql" (e.g. "opensisBackup07-20-2023.sql"), i.e. can easily be guessed. This file can be accessed by any unauthenticated actor and contains a dump of the whole database including password hashes. | ||||
CVE-2022-45962 | 1 Os4ed | 1 Opensis | 2023-02-22 | 6.5 Medium |
Open Solutions for Education, Inc openSIS Community Edition v8.0 and earlier is vulnerable to SQL Injection via CalendarModal.php. | ||||
CVE-2020-13383 | 1 Os4ed | 1 Opensis | 2022-10-07 | 7.5 High |
openSIS through 7.4 allows Directory Traversal. | ||||
CVE-2020-13381 | 1 Os4ed | 1 Opensis | 2022-10-07 | 9.8 Critical |
openSIS through 7.4 allows SQL Injection. | ||||
CVE-2014-8366 | 1 Os4ed | 1 Opensis | 2022-10-03 | N/A |
SQL injection vulnerability in openSIS 4.5 through 5.3 allows remote attackers to execute arbitrary SQL commands via the Username and password to index.php. | ||||
CVE-2020-6122 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The mn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6121 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The ln parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6120 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The fn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6119 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The byear parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6118 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bmonth parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6117 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bday parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6123 | 1 Os4ed | 1 Opensis | 2022-07-28 | 8.8 High |
An exploitable sql injection vulnerability exists in the email parameter functionality of OS4Ed openSIS 7.3. The email parameter in the page EmailCheck.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. | ||||
CVE-2020-6126 | 1 Os4ed | 1 Opensis | 2022-05-31 | 8.8 High |
SQL injection vulnerability exists in the CoursePeriodModal.php page of OS4Ed openSIS 7.3. The course_period_id parameter in the page CoursePeriodModal.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger these vulnerabilities. | ||||
CVE-2020-6125 | 1 Os4ed | 1 Opensis | 2022-05-31 | 8.8 High |
An exploitable SQL injection vulnerability exists in the GetSchool.php functionality of OS4Ed openSIS 7.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. |