cvedb.io
CVE-2021-44966
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2021-12-13T15:15:08.313 · Last modified 2026-06-17T04:13:00.610

Summary

SQL injection bypass authentication vulnerability in PHPGURUKUL Employee Record Management System 1.2 via index.php. An attacker can log in as an admin account of this system and can destroy, change or manipulate all sensitive information on the system.

Affected products

phpgurukul — employee_record_management_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when phpgurukul ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.