{"id":"CVE-2022-45962","details":"Open Solutions for Education, Inc openSIS Community Edition v8.0 and earlier is vulnerable to SQL Injection via CalendarModal.php.","modified":"2026-04-02T08:27:24.930163Z","published":"2023-02-13T21:15:13.477Z","references":[{"type":"ADVISORY","url":"https://github.com/OS4ED/openSIS-Classic/blob/381a1ad907285182c88e30b8bb6ce91123d9275d/CalendarModal.php#L30"},{"type":"FIX","url":"https://github.com/OS4ED/openSIS-Classic/commit/81799fd1de74d7b4bf3c4c37ad6042214e48a469#diff-06a8cd9b045bb97531de5ba5122272ffdd519a78b1daa12060e12e337c8d2016"},{"type":"FIX","url":"https://ccat.gitbook.io/cyber-sec/cve/cve-2022-45962-postauth-sqli"},{"type":"FIX","url":"https://github.com/OS4ED/openSIS-Classic/commit/81799fd1de74d7b4bf3c4c37ad6042214e48a469"},{"type":"PACKAGE","url":"https://github.com/OS4ED/openSIS-Classic"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/os4ed/opensis-classic","events":[{"introduced":"0"},{"fixed":"81799fd1de74d7b4bf3c4c37ad6042214e48a469"}]},{"type":"GIT","repo":"https://github.com/os4ed/opensis-responsive-design","events":[{"introduced":"0"},{"last_affected":"0a2d61fff35900fc91566e6621d49959599bcb4e"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"8.0"}]}}],"versions":["V7.5","V7.6","V8.0","Ver7.0Prod","Ver7.0Prod_update","Ver7.0beta1","v7.1","v7.2","v7.3","ver7.1","ver7.4"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-45962.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}