Apartment Visitors Management System
CVE-2021-38833
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
SQL injection vulnerability in PHPGurukul Apartment Visitors Management System (AVMS) v. 1.0 allows attackers to execute arbitrary SQL statements and to gain RCE.
AnalysisAI
SQL injection vulnerability in PHPGurukul Apartment Visitors Management System (AVMS) v. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Technical ContextAI
This vulnerability is classified as SQL Injection (CWE-89), which allows attackers to execute arbitrary SQL commands against the database. SQL injection vulnerability in PHPGurukul Apartment Visitors Management System (AVMS) v. 1.0 allows attackers to execute arbitrary SQL statements and to gain RCE. Affected products include: Apartment Visitors Management System Project Apartment Visitors Management System.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use parameterized queries/prepared statements. Never concatenate user input into SQL. Apply least-privilege database permissions.
Apartment Visitor Management System v1.0 is vulnerable to SQL Injection via /avms/index.php. Rated critical severity (CV
A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. Rated critical severity (CVSS 9.8),
A vulnerability classified as critical was found in PHPGurukul Apartment Visitors Management System 1.0. Rated medium se
A vulnerability, which was classified as critical, has been found in PHPGurukul Apartment Visitors Management System 1.0
A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. Rated medium severity (CVSS 6.9), this
A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. Rated medium severity (CVSS 6.9), this
A vulnerability has been found in PHPGurukul Apartment Visitors Management System 1.0 and classified as critical. Rated
A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. Rated medium severity (CVSS 6.9), this
A vulnerability classified as critical was found in projectworlds Apartment Visitors Management System 1.0. Rated medium
A vulnerability was found in SourceCodester Apartment Visitor Management System and classified as critical. Rated critic
A vulnerability has been found in SourceCodester Apartment Visitor Management System 1.0 and classified as problematic.
A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0 and classified as critical.php. Rated m
Same weakness CWE-89 – SQL Injection
View allShare
External POC / Exploit Code
Leaving vuln.today