Vulnerabilities > Os4Ed > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-08-24 | CVE-2020-6637 | SQL Injection vulnerability in Os4Ed Opensis 7.3 openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php. | 9.8 |
2020-07-01 | CVE-2020-13382 | Missing Authentication for Critical Function vulnerability in Os4Ed Opensis openSIS through 7.4 has Incorrect Access Control. | 9.1 |
2020-07-01 | CVE-2020-13381 | SQL Injection vulnerability in Os4Ed Opensis openSIS through 7.4 allows SQL Injection. | 9.8 |
2020-07-01 | CVE-2020-13380 | SQL Injection vulnerability in Os4Ed Opensis openSIS before 7.4 allows SQL Injection. | 9.8 |