Vulnerability Details CVE-2021-37221
A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & customer create option, which could let a remote malicious user upload an arbitrary php file. .
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2021-37221
-
Customer Relationship Management System Project » Customer Relationship Management System » Version: 1.0cpe:2.3:a:customer_relationship_management_system_project:customer_relationship_management_system:1.0