Security Advisory
CVE-2021-40578
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Authenticated Blind & Error-based SQL injection vulnerability was discovered in Online Enrollment Management System in PHP and PayPal Free Source Code 1.0, that allows attackers to obtain sensitive information and execute arbitrary SQL commands via IDNO parameter.