Unrated severityNVD Advisory· Published Apr 10, 2014· Updated May 6, 2026

CVE-2014-1455

Description

SQL injection vulnerability in the password reset functionality in Pearson eSIS Enterprise Student Information System, possibly 3.3.0.13 and earlier, allows remote attackers to execute arbitrary SQL commands via the new password.

Affected products

Pearson/Esis Enterprise Student Information System
cpe:2.3:a:pearson:esis_enterprise_student_information_system:*:*:*:*:*:*:*:*
Range: <=3.3.0.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/archive/1/531751/100/0/threadednvd
www.securityfocus.com/bid/66689nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000