CVE-2021-41433

CRITICAL

Resumes Management and Job Application Website Application 1.0 - SQL Injection in Login Form

Title source: llm
STIX 2.1

Description

SQL Injection vulnerability exists in version 1.0 of the Resumes Management and Job Application Website application login form by EGavilan Media that allows authentication bypass through login.php.

Scores

CVSS v3 9.8
EPSS 0.0094
EPSS Percentile 56.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-89
Status published
Products (1)
resumes_management_and_job_application_website_application_project/resumes_management_and_job_application_website_application 1.0
Published Sep 27, 2022
Tracked Since Feb 18, 2026