Unrated severityNVD Advisory· Published Jan 30, 2026· Updated Mar 5, 2026

Online-Exam-System 2015 - 'fid' SQL Injection

CVE-2020-37057

Description

Online-Exam-System 2015 contains a SQL injection vulnerability in the feedback module that allows attackers to manipulate database queries through the 'fid' parameter. Attackers can inject malicious SQL code into the 'fid' parameter to potentially extract, modify, or delete database information.

Affected products

Sunnygkp10/Online Exam Systemv5
Range: 2015

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/48529mitreexploit
www.vulncheck.com/advisories/online-exam-system-fid-sql-injectionmitrethird-party-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000