CVE-2021-47848
Blitar Tourism 1.0 - Authentication Bypass SQLi
Blitar Tourism 1.0 contains an authentication bypass vulnerability that allows attackers to bypass login by injecting SQL code through the username parameter. Attackers can manipulate the login request by sending a crafted username with SQL injection techniques to gain unauthorized administrative access.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N
Productos afectados
satndy · Aplikasi-Biro-Travel¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →