OPENSIS 80 SQL INJECTION VULNERABILITY CVE-2021-39377 A SQL Injection vulnerability exists in version 80 of openSIS when MySQL (MariaDB) is being used as the application database A malicious attacker can issue SQL commands to the Mysql (MariaDB) database through the vulnerable username= parameter Vulnerable PHP Page: indexphp - username parameter Vulnerable Payload sqlmap