Classapps - Selectsurvey.net CVE

Filtered by vendor Classapps Subscribe

Filtered by product Selectsurvey.net

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-41609	1 Classapps	1 Selectsurvey.net	2022-02-02	7.5 HIGH	9.8 CRITICAL
SQL injection in the ID parameter of the UploadedImageDisplay.aspx endpoint of SelectSurvey.NET before 5.052.000 allows a remote, unauthenticated attacker to retrieve data from the application's backend database via boolean-based blind and UNION injection.

Vulnerabilities (CVE)