Skip to main content
CVE-2021-3239 CRITICAL POC THREAT Act Now

E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi RCE E Learning System
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
17.9%
CVE-2021-26822 CRITICAL POC Act Now

Teachers Record Management System 1.0 is affected by a SQL injection vulnerability in 'searchteacher' POST parameter in search-teacher.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP RCE Teachers Record Management System
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
4.8%
CVE-2021-26201 CRITICAL POC Act Now

The Login Panel of CASAP Automated Enrollment System 1.0 is vulnerable to SQL injection authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Authentication Bypass Casap Automated Enrollment System
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
2.2%
CVE-2021-26200 CRITICAL POC Act Now

The user area for Library System 1.0 is vulnerable to SQL injection where a user can bypass the authentication and login as the admin user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Library System
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
2.2%
CVE-2021-3375 CRITICAL POC Act Now

ActivePresenter 6.1.6 is affected by a memory corruption vulnerability that may result in a denial of service (DoS) or arbitrary code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service RCE Memory Corruption Activepresenter
NVD
CVSS 3.1
9.8
EPSS
3.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy