What is CVE-2021-42670?

CVE-2021-42670 is a vulnerability in N/a. Published 2021-11-05.

Is CVE-2021-42670 known to be exploited?

15 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2021-42670

A SQL injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to the announcements_student.php web page. As a result a malicious user can extract sensitive data from the web server and in some c…

EPSS: 0.580 (98.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

0xDeku/CVE-2021-42670
20142995/nuclei-templates
2lambda123/CVE-mitre
ARPSyndicate/cvemon
NaInSec/CVE-PoC-in-GitHub
Offensive-Penetration-Security/OPSEC-Hall-of-fame
SYRTI/POC_
TheHackingRabbi/CVE-2021-42670
WhooAmii/POC_
cyb3r-w0lf/nuclei-template-collection

References

github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/janobe/CVE-nu11-1013… (x_refsource_MISC)
www.sourcecodester.com/php/13115/engineers-online-portal-php.html (x_refsource_MISC)
github.com/TheHackingRabbi/CVE-2021-42670 (x_refsource_MISC)

Frequently asked questions

What is CVE-2021-42670?: CVE-2021-42670 is a vulnerability in N/a. Published 2021-11-05.
Is CVE-2021-42670 known to be exploited?: 15 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.