CNNVD-202601-1812 Information

CNNVD ID

CNNVD-202601-1812

Related CVE

CVE-2025-51567

• CNNVD Published: 2026-01-12

Description (Chinese)

Kashipara Online Exam System是Kashipara公司的一个在线考试系统。 kashipara Online Exam System V1.0版本存在安全漏洞，该漏洞源于/exam/user/profile.php页面中rname、rcollage、rnumber、rgender和rpassword参数未经验证，可能导致SQL注入攻击。

Description (English)

Kashipara Online Exam Systems is an online examination system for Kashiraa. There is a security loophole in version kashipara Online Exam System V1.0, which originates from the unverified parameters of rname, rcolllage, nmber, rgender and rpassword on/exam/user/profile.php page, which may lead to an attack by SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Kashipara

Published

2026-01-12

Last Modified

2026-02-24

References

https://github.com/0xBhushan/Writeups/blob/main/CVE/Kashipara/Online%20Exam%20System/SQL%20Injection-Profile%20Update.pdf https://access.redhat.com/security/cve/cve-2025-51567