Critical severity9.8NVD Advisory· Published Nov 30, 2021· Updated Jun 17, 2026
CVE-2021-41677
CVE-2021-41677
Description
A SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as the application database. An attacker can then issue the SQL command through the /opensis/functions/GetStuListFnc.php &Grade= parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- openSIS/openSISdescription
Patches
Vulnerability mechanics
References
1- github.com/OS4ED/openSIS-Classic/issues/202nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.