Vulnerability Description
The username and password field of login in Lodging Reservation Management System V1 can give access to any user by using SQL injection to bypass authentication.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lodging Reservation Management System Project | Lodging Reservation Management System | 1.0 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/164366/Lodging-Reservation-Management-SysteExploitThird Party AdvisoryVDB Entry
- https://github.com/Ni7inSharma/CVE-2021-41511ExploitThird Party Advisory
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41511Third Party Advisory
- https://streamable.com/9fq8uwExploitThird Party Advisory
- https://www.exploit-db.com/exploits/50372ExploitThird Party AdvisoryVDB Entry
- https://www.nu11secur1ty.com/2021/10/cve-2021-41511.htmlExploitThird Party Advisory
- https://www.sourcecodester.com/php/14883/lodging-reservation-management-system-pProductThird Party Advisory
- http://packetstormsecurity.com/files/164366/Lodging-Reservation-Management-SysteExploitThird Party AdvisoryVDB Entry
- https://github.com/Ni7inSharma/CVE-2021-41511ExploitThird Party Advisory
- https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41511Third Party Advisory
- https://streamable.com/9fq8uwExploitThird Party Advisory
- https://www.exploit-db.com/exploits/50372ExploitThird Party AdvisoryVDB Entry
- https://www.nu11secur1ty.com/2021/10/cve-2021-41511.htmlExploitThird Party Advisory
- https://www.sourcecodester.com/php/14883/lodging-reservation-management-system-pProductThird Party Advisory
FAQ
What is CVE-2021-41511?
CVE-2021-41511 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The username and password field of login in Lodging Reservation Management System V1 can give access to any user by using SQL injection to bypass authentication.
How severe is CVE-2021-41511?
CVE-2021-41511 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-41511?
Check the references section above for vendor advisories and patch information. Affected products include: Lodging Reservation Management System Project Lodging Reservation Management System.