CRITICAL🇵🇱 Wersja polska

CVE-2025-22930

CVSS 9.8v3.1pub. 2025-04-03upd. 2025-04-29

OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the groupid parameter at /messaging/Group.php.

🤖 AI Analysis
How it works

The vulnerability results from the lack of proper validation and sanitization of user input data transmitted in the groupid parameter to the /messaging/Group.php endpoint. An attacker can inject malicious SQL code directly into the database query, manipulating its logic. Due to the network vector (AV:N) and lack of authentication requirements (PR:N) as well as user interaction (UI:N), the exploit can be performed remotely by any person with access to the application.

Impact

An attacker can obtain unauthorized read, modification, or deletion of data from the application's database, including personal data of students and employees. Depending on the database configuration, it may also be possible to take control of the database server.

Mitigation & patch

Patches available from the vendor should be applied in accordance with the references. It is recommended to immediately monitor the vendor's repository (https://github.com/OS4ED/openSIS-Classic) for updates. Temporarily, consider restricting access to the /messaging/Group.php endpoint at the firewall or web server level.

Who is affected

OS4Ed openSIS in versions 7.0 to 9.1 (inclusive).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Os4ed Opensis

    APP
    Os4Ed
    7.0 – 9.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
References

Related vulnerabilities

CVE-2021-41691CRITICAL9.8PL ✓ten sam produkt

SQL Injection w OpenSIS via parametry student_id i TRANSFER[SCHOOL]

CVE-2025-22928CRITICAL9.8PL ✓ten sam produkt

SQL Injection w OS4ED openSIS — parametr cp_id w module wiadomości

CVE-2025-22926CRITICAL9.8PL ✓ten sam produkt

Path traversal w openSIS umożliwia nieautoryzowany dostęp do plików

CVE-2025-22927CRITICAL9.1PL ✓ten sam produkt

Path traversal w openSIS — nieautoryzowany dostęp do plików przez Modules.php

CVE-2025-22929CRITICAL9.8PL ✓ten sam produkt

SQL Injection w Os4Ed openSIS — parametr filter_id