ГлавнаяУязвимости → CVE-2021-47848
8.2высокая

CVE-2021-47848

Описание

Blitar Tourism 1.0 contains an authentication bypass vulnerability that allows attackers to bypass login by injecting SQL code through the username parameter. Attackers can manipulate the login request by sending a crafted username with SQL injection techniques to gain unauthorized administrative access.

CVSS
Балл8.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Источники
https://github.com/satndy/Aplikasi-Biro-Travelhttps://www.exploit-db.com/exploits/49759https://www.vulncheck.com/advisories/blitar-tourism-authentication-bypass-sqli