SQL Injection Authentication Bypass Vulnerability in Online Pre-owned/Used Car Showroom Management System 1.0

SQL Injection Authentication Bypass Vulnerability in Online Pre-owned/Used Car Showroom Management System 1.0

CVE-2021-44655 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication bypass vulnerability. Admin panel authentication can be bypassed due to SQL injection vulnerability in the login form allowing attacker to get admin access on the application.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.