CVE-2021-40543

Published: 2021-10-11T13:15Z

Last Modified: 2024-11-21T06:24Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Opensis-Classic Version 8.0 is affected by a SQL injection vulnerability due to a lack of sanitization of input data at two parameters $_GET['usrid'] and $_GET['prof_id'] in the PasswordCheck.php file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt