CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-37807

An SQL Injection vulneraility exists in https://phpgurukul.com Online Shopping Portal 3.1 via the email parameter on the /check_availability.php endpoint that serves as a checker whether a new user's email is already exist within the database.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://packetstormsecurity.com/files/163574/Online-Shopping-Portal-3.1-SQL-Injection.html
https://packetstormsecurity.com/files/163574/Online-Shopping-Portal-3.1-SQL-Injection.html

Products affected by CVE-2021-37807

Phpgurukul » Online Shopping Portal » Version: 3.1

cpe:2.3:a:phpgurukul:online_shopping_portal:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37807

Products

Pricing

Contact Us