CyberSec.Space Logo
Back to CVE Browser

CVE-2021-46451

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1310%
EPSS Percentile40.41th
PublishedJan 24, 2022
Last ModifiedNov 21, 2024

Vulnerability Description

An SQL Injection vulnerabilty exists in Sourcecodester Online Project Time Management System 1.0 via the pid parameter in the load_file function.

Affected Platforms (CPE)

📦
Online Project Time Management System Project

Online Project Time Management System

= 1.0

References & Advisories

🔗 https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/oretnom23/2022/Online-Project-Time-Management
🔗 https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/oretnom23/2022/Online-Project-Time-Management

Related Vulnerabilities

CVE-2021-2328110.0

Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM soft...

CVE-2021-217710.0

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Gateway). The supported version tha...

CVE-2021-2732910.0

Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names.

CVE-2021-231710.0

Vulnerability in the Oracle Cloud Infrastructure Storage Gateway product of Oracle Storage Gateway (component: Management Console)...