VYPR
Critical severity9.8NVD Advisory· Published Sep 1, 2021· Updated Jun 17, 2026

CVE-2021-39377

CVE-2021-39377

Description

A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the application database. A malicious attacker can issue SQL commands to the MySQL (MariaDB) database through the index.php username parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • openSIS/openSISdescription

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.