CVE-2021-46307: SQL Injection
First published: Fri Jan 21 2022(Updated: )
An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid parameter in account.php.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Projectworlds Online Examination System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the SQL Injection vulnerability in Projectworlds Online Examination System?
The vulnerability ID is CVE-2021-46307.
What is the severity level of CVE-2021-46307?
The severity level of CVE-2021-46307 is critical with a score of 9.8.
How can the SQL Injection vulnerability be exploited in Projectworlds Online Examination System?
The SQL Injection vulnerability can be exploited via the 'eid' parameter in the 'account.php' file.
What is the affected software version of Projectworlds Online Examination System?
The affected software version is 1.0.
Is there a fix available for CVE-2021-46307?
It is recommended to update to a patched version of Projectworlds Online Examination System to fix CVE-2021-46307. Please refer to the vendor's website for patch information.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/event
- agent/tags
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/projectworlds
- canonical/projectworlds online examination system
- version/projectworlds online examination system/1.0