CVE-2021-44088

CVE-2021-44088

EPSS 3.3%

An SQL Injection vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows a remote attacker to bypass authentication via unsanitized login parameters.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://sourcecodester.com https://www.exploit-db.com/exploits/50802 https://www.sourcecodester.com/sites/default/files/download/oretnom23/apsystem.zip