CNNVD-202601-4981 Information

CNNVD ID

CNNVD-202601-4981

Related CVE

CVE-2020-37051

• CNNVD Published: 2026-01-30

Description (Chinese)

Online-Exam-System-是Sunny Prakash Tiwari个人开发者的一个在线考试系统。 Online-Exam-System- 2015版本存在SQL注入漏洞，该漏洞源于反馈表单存在基于时间的盲SQL注入，可能导致提取数据库密码哈希。

Description (English)

Online-Exam-System is an online examination system for Sunny Prakash Tiwari personal developers. The Online-Exam-System-2015 version has an injection loophole in SQL, which results from the time-based blind SQL injection of the feedback form, which may lead to the extraction of the database password, Hashi.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2026-01-30

Last Modified

2026-02-24

References

https://github.com/sunnygkp10/Online-Exam-System-.git https://www.exploit-db.com/exploits/48560 https://www.vulncheck.com/advisories/online-exam-system-feedback-sql-injection