Unrated severityNVD Advisory· Published Jun 22, 2020· Updated Aug 4, 2024
CVE-2020-14972
CVE-2020-14972
Description
Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Code Execution (RCE) via the user_email, user_pass, and id parameters on the admin login-portal and the edit-lessons webpages.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Sourcecodester/Pisay Online E-Learning Systemdescription
- Range: =1.0
Patches
Vulnerability mechanics
References
2- www.exploit-db.com/exploits/48439mitrex_refsource_MISC
- www.sourcecodester.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.