QwikSec

Security Database

CVE

CWE

Training

CVE-2021-26822

Published: Feb 15, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

Teachers Record Management System 1.0 is affected by a SQL injection vulnerability in 'searchteacher' POST parameter in search-teacher.php. This vulnerability can be exploited by a remote unauthenticated attacker to leak sensitive information and perform code execution attacks.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://phpgurukul.com/teachers-record-management-system-using-php-and-mysql/

x_refsource_MISC

https://www.exploit-db.com/exploits/49562

x_refsource_MISC

https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-26822

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.