CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-41645

Remote Code Execution (RCE) vulnerability exists in Sourcecodester Budget and Expense Tracker System 1.0 that allows a remote malicious user to inject arbitrary code via the image upload field. .

Exploit prediction scoring system (EPSS) score

EPSS Score 0.103

EPSS Ranking 92.7%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

https://www.exploit-db.com/exploits/50308
https://www.exploit-db.com/exploits/50308

Products affected by CVE-2021-41645

Oretnom23 » Budget And Expense Tracker System » Version: 1.0

cpe:2.3:a:oretnom23:budget_and_expense_tracker_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-41645

Products

Pricing

Contact Us