openSIS Administrator

2 exploits Active since Sep 2021
CVE-2021-27340 WRITEUP MEDIUM WRITEUP
OpenSIS <= 7.6 - Reflected Cross-Site Scripting via EmailCheck.php opt Parameter
OpenSIS Community Edition version <= 7.6 is affected by a reflected XSS vulnerability in EmailCheck.php via the "opt" parameter.
CVSS 6.1
CVE-2021-27341 WRITEUP CRITICAL WRITEUP
OpenSIS CE <7.6 - Local File Inclusion
OpenSIS Community Edition version <= 7.6 is affected by a local file inclusion vulnerability in DownloadWindow.php via the "filename" parameter.
CVSS 9.8