CVE-2021-36520 Information

Description

A SQL injection vulnerability in I-Tech Trainsmart r1044 exists via a evaluation/assign-evaluation?id= URI.

Reference

https://www.go2itech.org/resources/trainsmart/ http://packetstormsecurity.com/files/171731/itech-TrainSmart-r1044-SQL-Injection.html https://sourceforge.net/p/trainsmart/code/HEAD/tree/code/