2023-12-20 15:57:19
Fluid Attacks
PUBLISHED
Student Information System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The coursename parameter of the marks.php resource does not validate the characters received and they are sent unfiltered to the database.