CRITICAL🇵🇱 Wersja polska

CVE-2025-22929

CVSS 9.8v3.1pub. 2025-04-03upd. 2025-04-29

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the filter_id parameter at /students/StudentFilters.php.

🤖 AI Analysis
How it works

An attacker sends a crafted HTTP request containing a malicious payload in the filter_id parameter to the /students/StudentFilters.php endpoint. Input data is not properly validated or sanitized before use in an SQL query, allowing injection of arbitrary SQL instructions. Since the attack does not require authentication or user interaction, it can be conducted remotely by anyone with network access to the application.

Impact

An attacker can gain unauthorized access to the database, read, modify, or delete student data and other sensitive information stored in the system. Depending on the database server configuration, it is also possible to take control of the server's operating system.

Mitigation & patch

Apply patches available from the vendor according to references. It is recommended to update to a version higher than 9.1 and restrict access to the openSIS application only to trusted networks or users (e.g., through a firewall or VPN) until the patch is implemented.

Who is affected

Os4Ed openSIS versions 7.0 to 9.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Os4ed Opensis

    APP
    Os4Ed
    7.0 – 9.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
References

Related vulnerabilities

CVE-2021-41691CRITICAL9.8PL ✓ten sam produkt

SQL Injection w OpenSIS via parametry student_id i TRANSFER[SCHOOL]

CVE-2025-22928CRITICAL9.8PL ✓ten sam produkt

SQL Injection w OS4ED openSIS — parametr cp_id w module wiadomości

CVE-2025-22926CRITICAL9.8PL ✓ten sam produkt

Path traversal w openSIS umożliwia nieautoryzowany dostęp do plików

CVE-2025-22927CRITICAL9.1PL ✓ten sam produkt

Path traversal w openSIS — nieautoryzowany dostęp do plików przez Modules.php

CVE-2025-22930CRITICAL9.8PL ✓ten sam produkt

SQL injection w OS4Ed openSIS via parametr groupid w Group.php