Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-39409

Published: 24/06/2022 Updated: 08/08/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Online Student Rate System

Vulnerability Summary

A vulnerability exists in Online Student Rate System v1.0 that allows any user to register as an administrator without needing to be authenticated.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

online student rate system project online student rate system 1.0

Github Repositories

https://github.com/StefanDorresteijn/CVE-2021-39409

Admin account registration in Online Student Rate System

CVE-2021-39409 Admin account registration is possible in Online Student Rate System v10, allowing a malicious actor to create an admin account and access the admin panel Vulnerability POST /ajaxphp?action=signup HTTP/11 Host: localhost User-Agent: Mozilla/50 (X11; Linux x86_64; rv:780) Gecko/20100101 Firefox/780 Accept: */* Accept-Language: en-US,en;q=05 Accept-Encoding

References

NVD-CWE-Otherhttps://github.com/StefanDorresteijn/CVE-2021-39409https://nvd.nist.govhttps://github.com/StefanDorresteijn/CVE-2021-39409
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987buffer overflowCVE-2024-28890CVE-2024-27574CVE-2024-27347CVE-2024-31450privilegeSSTICVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook