2 matches found
CVE-2021-37808
SQL Injection vulnerabilities exist in https://phpgurukul.com News Portal Project 3.1 via the 1 category, 2 subcategory, 3 sucatdescription, and 4 username parameters, the server response is about N seconds delay respectively which mean it is vulnerable to MySQL Blind Time Based. An attacker can...
CVE-2021-37808
The CVE-2021-37808 entry concerns SQL Injection in News Portal Project 3.1. The affected software is News Portal Project (version 3.1). The vulnerability arises from insufficient input validation on the parameters category, subcategory, sucatdescription, and username, enabling SQL injection that ...