CVE-2021-25899

Publication date

2021-04-23 20:49:37

Family

mitre

State

PUBLISHED

Description

An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. An unauthenticated attacker can send a crafted HTTP request to perform a blind time-based SQL Injection. The vulnerable parameter is param1.