Vulnerability Details CVE-2021-44655
Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication bypass vulnerability. Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to get admin access on the application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-44655
- https://www.exploit-db.com/exploits/50560
- https://www.nu11secur1ty.com/2021/12/cve-2021-44655.html
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-44655
- https://www.exploit-db.com/exploits/50560
- https://www.nu11secur1ty.com/2021/12/cve-2021-44655.html
Products affected by CVE-2021-44655
-
Online Pre-Owned/used Car Showroom Management System Project » Online Pre-Owned/used Car Showroom Management System » Version: 1.0cpe:2.3:a:online_pre-owned/used_car_showroom_management_system_project:online_pre-owned/used_car_showroom_management_system:1.0