SQL Injection in online dictionary function of Easytest Online Test Platform ver.24E01 and earlier allow remote authenticated users to execute arbitrary SQL commands via the word parameter.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| easytest | easytest_online_test_platform | * |