CyberSec.Space Logo
Back to CVE Browser

CVE-2021-36560

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1570%
EPSS Percentile13.38th
PublishedNov 2, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin.

Affected Platforms (CPE)

πŸ“¦
Phone Shop Sales Management System Project

Phone Shop Sales Management System

= 1.0

References & Advisories

πŸ”— https://pratikkhalane91.medium.com/cve-2021-35559-bb62022dd08a
πŸ”— https://www.sourcecodester.com/
πŸ”— https://pratikkhalane91.medium.com/cve-2021-35559-bb62022dd08a
πŸ”— https://www.sourcecodester.com/

Related Vulnerabilities

CVE-2021-366239.8

Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE.

CVE-2021-366249.8

Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for a...

CVE-2021-353374.3

Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will...

CVE-2021-4155610.0

sqclass.cpp in Squirrel through 2.2.5 and 3.x through 3.1 allows an out-of-bounds read (in the core interpreter) that can lead to ...