CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-25205

SQL injection vulnerability in SourceCodester E-Commerce Website V 1.0 allows remote attackers to execute arbitrary SQL statements, via the update parameter to empViewUpdate.php .

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/BigTiger2020/E-Commerce-Website/blob/main/E-Commerce%20Website-sql.md
https://github.com/BigTiger2020/E-Commerce-Website/blob/main/E-Commerce%20Website-sql.md

Products affected by CVE-2021-25205

E-Commerce Website Project » E-Commerce Website » Version: 1.0

cpe:2.3:a:e-commerce_website_project:e-commerce_website:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-25205

Products

Pricing

Contact Us