First published: Thu Jul 22 2021(Updated: )
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Casap Automated Enrollment System Project Casap Automated Enrollment System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-26226 is a SQL injection vulnerability in SourceCodester CASAP Automated Enrollment System v 1.0 that allows remote attackers to execute arbitrary SQL statements.
CVE-2021-26226 is classified as critical with a severity rating of 9.8.
CVE-2021-26226 affects Casap Automated Enrollment System version 1.0.
Remote attackers can exploit CVE-2021-26226 by manipulating the id parameter in the edit_user.php file to execute arbitrary SQL statements.
Yes, a patch or update should be applied to the SourceCodester CASAP Automated Enrollment System v 1.0 to fix the SQL injection vulnerability.