CVE-2021-42334

The Easytest contains SQL injection vulnerabilities. After obtaining a user’s privilege, remote attackers can inject SQL commands into the parameters of the elective course management page to obtain all database and administrator permissions. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt