Vulnerabilities (CVE)

Filtered by vendor Huaju Subscribe

Filtered by product Easytest Online Learning Test Platform

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-42334	1 Huaju	1 Easytest Online Learning Test Platform	2021-10-20	6.5 MEDIUM	8.8 HIGH
The Easytest contains SQL injection vulnerabilities. After obtaining a user’s privilege, remote attackers can inject SQL commands into the parameters of the elective course management page to obtain all database and administrator permissions.
CVE-2021-42333	1 Huaju	1 Easytest Online Learning Test Platform	2021-10-20	6.5 MEDIUM	8.8 HIGH
The Easytest contains SQL injection vulnerabilities. After obtaining user’s privilege, remote attackers can inject SQL commands into the parameters of the learning history page to access all database and obtain administrator permissions.