exploitDog

CVE-2021-47918

Опубликовано: 01 фев. 2026

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

Simple CMS 2.1 contains a remote SQL injection vulnerability that allows privileged attackers to inject unfiltered SQL commands in the users module. Attackers can exploit unvalidated input parameters in the admin.php file to compromise the database management system and web application.

Ссылки

EPSS

Процентиль: 8%

0.00031

Низкий

8.1 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-h64m-fxq4-m43w

CVSS3: 8.1

github

7 дней назад

Simple CMS 2.1 contains a remote SQL injection vulnerability that allows privileged attackers to inject unfiltered SQL commands in the users module. Attackers can exploit unvalidated input parameters in the admin.php file to compromise the database management system and web application.

EPSS

Процентиль: 8%

0.00031

Низкий

8.1 High

CVSS3

Дефекты

CWE-89