CVE-2023-52285 Information

Description

ExamSys 9150244 allows SQL Injection via the /Support/action/Pages.php s_score2 parameter.

Reference

https://github.com/lrx0014/ExamSys/commit/915024448428867f2228cf7f06abd1b6e65e9397 https://fh4ntke.medium.com/examsys-multiple-sql-injections-ef94d84e440c