Authentication Bypass Vulnerability in Phone Shop Sales Management System

Authentication Bypass Vulnerability in Phone Shop Sales Management System

CVE-2021-36560 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin.

Learn more about our Web Application Penetration Testing UK.