| Description: | | KESION Online School is an online education platform developed by KESion, which aims to help educational institutions, schools, teachers, enterprises and institutions to quickly carry out online teaching, and provide low-cost and high-quality online education solutions. There is an arbitrary file reading vulnerability in the CheckOrder interface of the system, through which an unauthenticated attacker can read important system files (such as database configuration file, system configuration file), database configuration file, etc., resulting in an extremely insecure website. |