CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-40247

SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.075

EPSS Ranking 91.3%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/B%26E%20Tracker-by:oretnom23-v1.0
https://www.sourcecodester.com/php/14893/budget-and-expense-tracker-system-php-free-source-code.html
https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/B%26E%20Tracker-by:oretnom23-v1.0
https://www.sourcecodester.com/php/14893/budget-and-expense-tracker-system-php-free-source-code.html

Products affected by CVE-2021-40247

Oretnom23 » Budget And Expense Tracker System » Version: 1.0

cpe:2.3:a:oretnom23:budget_and_expense_tracker_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-40247

Products

Pricing

Contact Us