Skip to main content

Phone Shop Sales Management System

4 CVEs product

Monthly

CVE-2021-36560 CRITICAL POC Act Now

Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Authentication Bypass Phone Shop Sales Management System
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2021-36623 CRITICAL POC Act Now

Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Phone Shop Sales Management System
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
1.8%
CVE-2021-36624 CRITICAL POC Act Now

Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Authentication Bypass Phone Shop Sales Management System
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
3.4%
CVE-2021-35337 MEDIUM POC This Month

Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Phone Shop Sales Management System
NVD Exploit-DB
CVSS 3.1
4.3
EPSS
0.8%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Authentication Bypass Phone Shop Sales Management System
NVD
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Phone Shop Sales Management System
NVD Exploit-DB
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Authentication Bypass Phone Shop Sales Management System
NVD GitHub Exploit-DB
EPSS 1% CVSS 4.3
MEDIUM POC This Month

Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Phone Shop Sales Management System
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy