Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-43136

Published: 10/11/2021 Updated: 12/07/2022
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Formalms

Vulnerability Summary

An authentication bypass issue in FormaLMS <= 2.4.4 allows an malicious user to bypass the authentication mechanism and obtain a valid access to the platform.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

formalms formalms

Exploits

Exploit DB: FormaLMS 2.4.4 Authentication Bypass
FormaLMS versions 244 and below suffer from an authentication bypass vulnerability ...

References

CWE-798https://formalms.orghttps://blog.hacktivesecurity.comhttps://blog.hacktivesecurity.com/index.php/2021/10/05/cve-2021-43136-formalms-the-evil-default-value-that-leads-to-authentication-bypass/http://packetstormsecurity.com/files/164930/FormaLMS-2.4.4-Authentication-Bypass.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/164930/FormaLMS-2.4.4-Authentication-Bypass.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook