Security Advisory

CVE-2025-22925

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-02 00:00:00

Last updated 2025-04-03 13:25:28

Assigner mitre

State PUBLISHED

Description

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the table parameter at /attendance/AttendanceCodes.php. The remote, authenticated attacker requires the admin role to successfully exploit this vulnerability.

← Browse all CVEs View on cve.org ↗