CVE-2021-41433

Опубликовано: 27 сент. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

SQL Injection vulnerability exists in version 1.0 of the Resumes Management and Job Application Website application login form by EGavilan Media that allows authentication bypass through login.php.

Ссылки

https://github.com/martinkubecka/CVE-References/blob/main/CVE-2021-41433.md
Exploit
Third Party Advisory
https://github.com/martinkubecka/CVE-References/blob/main/Untitled-SQLi.md
Broken Link
https://github.com/martinkubecka/CVE-References/blob/main/CVE-2021-41433.md
Exploit
Third Party Advisory
https://github.com/martinkubecka/CVE-References/blob/main/Untitled-SQLi.md
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:resumes_management_and_job_application_website_application_project:resumes_management_and_job_application_website_application:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00568

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-m5p3-4fgc-g573