Online Thesis Archiving System 1.0 SQL Injection / Cross Site Scripting – Packet Storm Security

Online Thesis Archiving System version 1.0 suffers from remote SQL injection and persistent cross site scripting vulnerabilities.