exploitDog

GHSA-j7vv-mph8-283v

Опубликовано: 16 дек. 2021

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication bypass vulnerability. Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to get admin access on the application.

Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication bypass vulnerability. Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to get admin access on the application.

Ссылки

EPSS

Процентиль: 50%

0.00268

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-44655

CVSS3: 9.8

nvd

около 4 лет назад

Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication bypass vulnerability. Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to get admin access on the application.

EPSS

Процентиль: 50%

0.00268

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89