CNNVD-202602-379 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-379
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
GUnet OpenEclass是希腊GUnet公司的一个学习管理系统。 GUnet OpenEclass 1.7.3版本存在SQL注入漏洞,该漏洞源于议程模块等端点存在多个SQL注入点,可能导致经过身份验证的攻击者操纵数据库查询。
Description (English)
GUnet OpenEclass is a learning management system for the Greek company GUnet. GUnet OpenEclass 1.7.3 has an injection loophole in SQL, which stems from multiple SQL injection points at end points such as the agenda module, which may lead to a search of the database by an identified assailant.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
GUnet
Published
2026-02-03
Last Modified
2026-02-24
References
https://download.openeclass.org/files/docs/1.7/CHANGES.txt https://www.exploit-db.com/exploits/48163 https://www.openeclass.org/ https://www.vulncheck.com/advisories/gunet-openeclass-e-learning-platform-month-sql-injection
Share on: