Security Advisory

CVE-2021-42580

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-15 15:57:28

Last updated 2024-08-04 03:38:49

Assigner mitre

State PUBLISHED

Description

Sourcecodester Online Learning System 2.0 is vunlerable to sql injection authentication bypass in admin login file (/admin/login.php) and authenticated file upload in (Master.php) file , we can craft these two vunlerablities to get unauthenticated remote command execution.

← Browse all CVEs View on cve.org ↗