CVE-2021-39409

EUVD-2021-25768
A vulnerability exists in Online Student Rate System v1.0 that allows any user to register as an administrator without needing to be authenticated.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
Affected Products (NVD)
VendorProductVersion
online_student_rate_system_projectonline_student_rate_system
1.0
𝑥
= Vulnerable software versions
References
https://github.com/StefanDorresteijn/CVE-2021-39409
https://github.com/StefanDorresteijn/CVE-2021-39409