CVE-2020-23935 – Student Management System 1.0 - SQLi Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-23935
Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)". Kabir Alhasan Student Management System versión 1.0, es vulnerable a una Omisión de Autenticación por medio de "Username: admin'# && Password: (Write Something)" Kabir Alhasan Student Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. • https://www.exploit-db.com/exploits/50579 http://packetstormsecurity.com/files/165215/Kabir-Alhasan-Student-Management-System-1.0-SQL-Injection.html https://github.com/enesozeser/Vulnerabilities/blob/master/CVE-2020-23935 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •