2 matches found
CVE-2021-38840
CVE-2021-38840 affects Simple Water Refilling Station Management System 1.0. The vulnerability is a SQL injection in the water_refilling/classes/Login.php username parameter caused by lack of input validation, enabling potential arbitrary SQL execution. Exploitation details are not provided in th...
CVE-2021-38841
CVE-2021-38841 affects Simple Water Refilling Station Management System 1.0. The vulnerability arises in the SystemLogo option on the system_info page, within classes/SystemSettings.php (update_settings action), enabling Remote Code Execution. Connected documents confirm the affected component an...