Vulnerability
SQL injection in online virtual classroom via cid parameter
Description
The Application does not sanitize or escape cid parameter, making it vulnerable to sql injection.
CVE-ID
CVE-2023-34477
Vendor
WizIQ
Product
Joomla Extension Online Virtual Class
Disclosure Timeline
Reported On 06-07-2023
Made Public On:
Fixed On: Not Fixed
Credits
Vishal and Siva