CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

E-Negosyo System Project: Security Vulnerabilities

CVE-2021-41674

An SQL Injection vulnerability exists in Sourcecodester E-Negosyo System 1.0 via the user_email parameter in /admin/login.php.

CVSS Score

9.8

EPSS Score

0.004

Published

2021-10-29

CVE-2021-41675

A Remote Code Execution (RCE) vulnerabilty exists in Sourcecodester E-Negosyo System 1.0 in /admin/produts/controller.php via the doInsert function, which validates images with getImageSizei. .

CVSS Score

7.2

EPSS Score

0.037

Published

2021-10-29

Page 1

Vulnerabilities

Vulnerable Software

E-Negosyo System Project: Security Vulnerabilities

Products

Pricing

Contact Us