CVE-2020-6637

CVE-2020-6637

EPSS 20.1%

openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://cinzinga.com/CVE-2020-6637/https://github.com/OS4ED/openSIS-Responsive-Design/commit/1127ae0bb7c3a2883febeabc6b71ad8d73510de8 https://opensis.com/https://sourceforge.net/projects/opensis-ce/files/