Skip to main content

Online Reviewer System

3 CVEs product

Monthly

CVE-2023-2596 MEDIUM POC This Month

A vulnerability was found in SourceCodester Online Reviewer System 1.0 and classified as critical. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Reviewer System
NVD GitHub VulDB
CVSS 3.1
6.3
EPSS
0.1%
CVE-2021-41646 CRITICAL POC Act Now

Remote Code Execution (RCE) vulnerability exists in Sourcecodester Online Reviewer System 1.0 by uploading a maliciously crafted PHP file that bypasses the image upload filters.. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP RCE Online Reviewer System
NVD Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
3.7%
CVE-2021-27130 CRITICAL POC Act Now

Online Reviewer System 1.0 contains a SQL injection vulnerability through authentication bypass, which may lead to a reverse shell upload. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass SQLi Online Reviewer System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.5%
EPSS 0% CVSS 6.3
MEDIUM POC This Month

A vulnerability was found in SourceCodester Online Reviewer System 1.0 and classified as critical. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Online Reviewer System
NVD GitHub VulDB
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

Remote Code Execution (RCE) vulnerability exists in Sourcecodester Online Reviewer System 1.0 by uploading a maliciously crafted PHP file that bypasses the image upload filters.. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP RCE +1
NVD Exploit-DB VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Online Reviewer System 1.0 contains a SQL injection vulnerability through authentication bypass, which may lead to a reverse shell upload. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass SQLi Online Reviewer System
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy