CVE-2021-42169

2021-10-22T14:15:00
ID CVE-2021-42169
Type cve
Reporter cve@mitre.org
Modified 2021-12-03T20:58:00

Description

The Simple Payroll System with Dynamic Tax Bracket in PHP using SQLite Free Source Code (by: oretnom23 ) is vulnerable from remote SQL-Injection-Bypass-Authentication for the admin account. The parameter (username) from the login form is not protected correctly and there is no security and escaping from malicious payloads.