CNNVD-202601-4998 Information

CNNVD ID

CNNVD-202601-4998

Related CVE

CVE-2020-37035

• CNNVD Published: 2026-01-30

Description (Chinese)

elearning-script是Amit Kollol Dey个人开发者的一个电子学习博客。 elearning-script 0.1.0版本存在SQL注入漏洞，该漏洞源于搜索功能未验证用户输入，可能导致SQL注入攻击。

Description (English)

ELECT is an e-learning blog for Amit Kolol Dey’s personal developer. Version 0.1.0 of eearning-script contains an injection loophole in SQL, which stems from the unverified user input of the search function and may lead to an injection attack on SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2026-01-30

Last Modified

2026-02-24

References

https://github.com/amitkolloldey/elearning-script https://www.exploit-db.com/exploits/48629 https://www.vulncheck.com/advisories/e-learning-php-script-search-sql-injection