SQL Injection Vulnerability in Lodging Reservation Management System V1

CVE-2021-41511 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The username and password field of login in Lodging Reservation Management System V1 can give access to any user by using SQL injection to bypass authentication.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.