VYPR
High severity8.8NVD Advisory· Published Sep 1, 2020· Updated Jun 17, 2026

CVE-2020-6120

CVE-2020-6120

Description

SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The fn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • OS4Ed/openSISdescription

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.