Vulnerability Description
SQL injection vulnerability in PHPGurukul Apartment Visitors Management System (AVMS) v. 1.0 allows attackers to execute arbitrary SQL statements and to gain RCE.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apartment Visitors Management System Project | Apartment Visitors Management System | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-38833ExploitThird Party Advisory
- https://phpgurukul.com/apartment-visitors-management-system-using-php-and-mysql/ProductVendor Advisory
- https://streamable.com/ojobewExploitThird Party Advisory
- https://www.exploit-db.com/exploits/50288ExploitThird Party AdvisoryVDB Entry
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-38833ExploitThird Party Advisory
- https://phpgurukul.com/apartment-visitors-management-system-using-php-and-mysql/ProductVendor Advisory
- https://streamable.com/ojobewExploitThird Party Advisory
- https://www.exploit-db.com/exploits/50288ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2021-38833?
CVE-2021-38833 is a vulnerability with a CVSS score of 9.8 (CRITICAL). SQL injection vulnerability in PHPGurukul Apartment Visitors Management System (AVMS) v. 1.0 allows attackers to execute arbitrary SQL statements and to gain RCE.
How severe is CVE-2021-38833?
CVE-2021-38833 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-38833?
Check the references section above for vendor advisories and patch information. Affected products include: Apartment Visitors Management System Project Apartment Visitors Management System.