VYPR

Testerfassung

by DRK Odenwaldkreis

CVEs (2)

  • CVE-2021-35062HigAug 30, 2021
    risk 0.53cvss 8.1epss 0.01

    A Shell Metacharacter Injection vulnerability in result.php in DRK Odenwaldkreis Testerfassung March-2021 allow an attacker with a valid token of a COVID-19 test result to execute shell commands with the permissions of the web server.

  • CVE-2021-35061MedAug 30, 2021
    risk 0.40cvss 6.1epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in DRK Odenwaldkreis Testerfassung March-2021 allow remote attackers to inject arbitrary web script or HTML via all parameters to HTML form fields in all components.