CVE-2021-36560
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-36560
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Phone Shop Sales Managements System 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
SourceCodester Phone Shop Sales Managements System是美国SourceCodester公司的一个PHP项目,用于管理电话商店的销售交易。 PHP Phone Shop Sales Managements System存在授权问题漏洞,该漏洞源于网络系统或产品缺乏有效的权限许可和访问控制措施。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2021-36560
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-36560
请登录查看更多情报信息。
Security Blog Posts for CVE-2021-36560 (1)
- https://pratikkhalane91.medium.com/cve-2021-35559-bb62022dd08ax_refsource_MISC
Other References for CVE-2021-36560 (1)
- Free Source Code Projects and Tutorials - sourcecodester.comx_refsource_MISC
Same Patch Batch · n/a · 2021-11-02 · 35 CVEs total
| CVE-2021-43265 | Mahara 跨站脚本漏洞 | |
| CVE-2020-21574 | c-http 安全漏洞 | |
| CVE-2020-23685 | Liaoning Vtime Technology 188Jianzhan SQL注入漏洞 | |
| CVE-2020-23686 | AyaCMS 跨站请求伪造漏洞 | |
| CVE-2020-23718 | xujinliang zibbs 跨站脚本漏洞 | |
| CVE-2020-23719 | xujinliang zibbs 跨站脚本漏洞 | |
| CVE-2020-23754 | PHP-Fusion 跨站脚本漏洞 | |
| CVE-2021-42697 | Lightbeed Akka Akka-http缓冲区错误漏洞 | |
| CVE-2021-43266 | Catalyst IT Mahara 操作系统命令注入漏洞 | |
| CVE-2020-21573 | Image-Processing资源管理错误漏洞 | |
| CVE-2021-43264 | Mahara 路径遍历漏洞 | |
| CVE-2017-5123 | Linux kernel 输入验证错误漏洞 | |
| CVE-2021-43267 | Linux kernel 输入验证错误漏洞 | |
| CVE-2020-16048 | Angle 缓冲区错误漏洞 | |
| CVE-2021-43270 | Datalust Seq 安全漏洞 | |
| CVE-2021-20135 | Tenable Network Security Nessus 权限许可和访问控制问题漏洞 | |
| CVE-2020-27820 | Linux kernel 资源管理错误漏洞 | |
| CVE-2021-42568 | Sonatype Nexus Repository Manager 信息泄露漏洞 | |
| CVE-2020-35249 | ElkarBackup 跨站脚本漏洞 | |
| CVE-2021-27722 | Nsasoft SpotAuditor 安全漏洞 |
Showing top 20 of 35 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-9376
JPress UCenter Article Submission Endpoint doWriteSave impro - CVE-2026-9373
JeecgBoot OpenAPI Endpoint call improper authentication - CVE-2026-9365
Ettercap GG Dissector ec_gg.c FUNC_DECODER heap-based overfl - CVE-2026-9358
postcss AST Serialization container.js toString recursion - CVE-2026-9357
vBulletin Login cross site scripting
V. Comments for CVE-2021-36560
No comments yet