VYPR
Unrated severityNVD Advisory· Published Dec 9, 2025· Updated Apr 7, 2026

OpenBMCS SQL Injection via obix_test.php

CVE-2021-47704

Description

OpenBMCS 2.4 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting arbitrary SQL code. Attackers can send GET requests to /debug/obix_test.php with malicious 'id' values to extract database information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.