GCVE - cpe:2.3:a:n/a:os4ed:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:os4ed:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Os4Ed (`262c13ee-874c-5246-8d0c-28e63ffdd556`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-6144`	vulnerable	2026-06-08 05:26:44.598305	Details available CRITICAL (10) A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The username variable which is set at line 121 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this vulnerability. Published: 2020-09-01T20:15:36.000Z Updated: 2024-08-04T08:55:21.430Z Open on db.gcve.eu Reference links https://talosintelligence.com/vulnerability_reports/TALOS-2020-1083	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6143`	vulnerable	2026-06-08 05:26:44.593237	Details available CRITICAL (10) A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The password variable which is set at line 122 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this vulnerability. Published: 2020-09-01T20:15:25.000Z Updated: 2024-08-04T08:55:21.316Z Open on db.gcve.eu Reference links https://talosintelligence.com/vulnerability_reports/TALOS-2020-1083	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6142`	vulnerable	2026-06-08 05:26:44.592916	Details available CRITICAL (9.9) A remote code execution vulnerability exists in the Modules.php functionality of OS4Ed openSIS 7.3. A specially crafted HTTP request can cause local file inclusion. An attacker can send an HTTP request to trigger this vulnerability. Published: 2020-09-01T20:12:08.000Z Updated: 2024-08-04T08:55:21.837Z Open on db.gcve.eu Reference links https://talosintelligence.com/vulnerability_reports/TALOS-2020-1082	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6141`	vulnerable	2026-06-08 05:26:44.592423	Details available CRITICAL (9.8) An exploitable SQL injection vulnerability exists in the login functionality of OS4Ed openSIS 7.3. A specially crafted HTTP request can lead to SQL injection. An attacker can send an HTTP request to trigger this vulnerability. Published: 2020-09-01T17:31:10.000Z Updated: 2024-08-04T08:55:21.663Z Open on db.gcve.eu Reference links https://talosintelligence.com/vulnerability_reports/TALOS-2020-1081	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6140`	vulnerable	2026-06-08 05:26:44.591897	Details available CRITICAL (9.8) SQL injection vulnerability exists in the password reset functionality of OS4Ed openSIS 7.3. The password_stf_email parameter in the password reset page /opensis/ResetUserInfo.php is vulnerable to SQL injection. An attacker can send an HTTP request to trigger this vulnerability. Published: 2020-09-01T20:04:55.000Z Updated: 2024-08-04T08:55:21.858Z Open on db.gcve.eu Reference links https://talosintelligence.com/vulnerability_reports/TALOS-2020-1080	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6139`	vulnerable	2026-06-08 05:26:44.591391	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6138`	vulnerable	2026-06-08 05:26:44.590995	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6137`	vulnerable	2026-06-08 05:26:44.590676	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6136`	vulnerable	2026-06-08 05:26:44.590369	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6135`	vulnerable	2026-06-08 05:26:44.590058	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6134`	vulnerable	2026-06-08 05:26:44.589571	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6133`	vulnerable	2026-06-08 05:26:44.589164	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6132`	vulnerable	2026-06-08 05:26:44.588732	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6131`	vulnerable	2026-06-08 05:26:44.588233	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6130`	vulnerable	2026-06-08 05:26:44.587920	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6129`	vulnerable	2026-06-08 05:26:44.587481	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6128`	vulnerable	2026-06-08 05:26:44.587167	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6127`	vulnerable	2026-06-08 05:26:44.586835	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6126`	vulnerable	2026-06-08 05:26:44.586503	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6125`	vulnerable	2026-06-08 05:26:44.586012	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6124`	vulnerable	2026-06-08 05:26:44.583548	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6123`	vulnerable	2026-06-08 05:26:44.583045	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6122`	vulnerable	2026-06-08 05:26:44.582541	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6121`	vulnerable	2026-06-08 05:26:44.582014	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6120`	vulnerable	2026-06-08 05:26:44.581570	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-6119`	vulnerable	2026-06-08 05:26:44.581019	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Os4Ed

PURL mappings

Vulnerability references

Contribute