SQL Injection Vulnerability in PHPGURUKUL Employee Record Management System 1.2 via Email Parameter in forgetpassword.php

SQL Injection Vulnerability in PHPGURUKUL Employee Record Management System 1.2 via Email Parameter in forgetpassword.php

CVE-2021-43451 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SQL Injection vulnerability exists in PHPGURUKUL Employee Record Management System 1.2 via the Email POST parameter in /forgetpassword.php.

Learn more about our Web Application Penetration Testing UK.