CVE-2021-41511

Опубликовано: 04 окт. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The username and password field of login in Lodging Reservation Management System V1 can give access to any user by using SQL injection to bypass authentication.

Ссылки

http://packetstormsecurity.com/files/164366/Lodging-Reservation-Management-System-1.0-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/Ni7inSharma/CVE-2021-41511
Exploit
Third Party Advisory
https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41511
Third Party Advisory
https://streamable.com/9fq8uw
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/50372
Exploit
Third Party Advisory
VDB Entry
https://www.nu11secur1ty.com/2021/10/cve-2021-41511.html
Exploit
Third Party Advisory
https://www.sourcecodester.com/php/14883/lodging-reservation-management-system-php-free-source-code.html
Product
Third Party Advisory
http://packetstormsecurity.com/files/164366/Lodging-Reservation-Management-System-1.0-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/Ni7inSharma/CVE-2021-41511
Exploit
Third Party Advisory
https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41511
Third Party Advisory
https://streamable.com/9fq8uw
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/50372
Exploit
Third Party Advisory
VDB Entry
https://www.nu11secur1ty.com/2021/10/cve-2021-41511.html
Exploit
Third Party Advisory
https://www.sourcecodester.com/php/14883/lodging-reservation-management-system-php-free-source-code.html
Product
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:lodging_reservation_management_system_project:lodging_reservation_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00691

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-gxhq-4cc8-rfq5

github

больше 3 лет назад