An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. An unauthenticated attacker can send a crafted HTTP request to perform a blind time-based SQL Injection. The vulnerable parameter is param1.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-04-23T20:49:37
Updated: 2024-08-03T20:11:28.442Z
Reserved: 2021-01-22T00:00:00
Link: CVE-2021-25899
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-04-23T21:15:08.213
Modified: 2024-11-21T05:55:33.773
Link: CVE-2021-25899
Redhat
No data.