3 matches found
CVE-2021-34248
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-25905. Reason: This candidate is a duplicate of CVE-2020-25905. Notes: All CVE users should reference CVE-2020-25905 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage...
CVE-2020-25905
CVE-2020-25905 is an SQL injection vulnerability in Sourcecodester Mobile Shop System v1.0 (PHP/MySQL) exploitable via the email parameter in login.php and LoginAsAdmin.php. The issue, confirmed by multiple sources, allows attacker-controlled SQL execution with network access and no authenticatio...
CVE-2021-34248
CVE-2021-34248 is a duplicate of CVE-2020-25905 (DO NOT USE THIS CANDIDATE NUMBER; reference CVE-2020-25905). Connected sources confirm the underlying issue is an SQL injection in Sourcecodester Mobile Shop System for PHP/MySQL 1.0, exploitable via the email parameter in login.php and LoginAsAdmi...