Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'eid' parameter of the /update.php?qrmquiz resource does not validate the characters received and they are sent unfiltered to the database.
Publication date: Thu, 21 Dec 2023 22:15:00 +0000