Description
SQL Injection can occur in Simple Water Refilling Station Management System 1.0 via the water_refilling/classes/Login.php username parameter.
Related CPE's
References
https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-38840
ExploitThird Party Advisory
https://www.exploit-db.com/exploits/50204
ExploitThird Party AdvisoryVDB Entry
https://www.exploit-db.com/exploits/50205
ExploitThird Party AdvisoryVDB Entry
https://www.sourcecodester.com/users/tips23
Third Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 · Critical
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2021-09-07T06:15:08.120
3 years agoLast modified
2021-11-28T23:21:50.917
3 years ago