Login Sign Up

CVE-2021-43140

9.8 CRITICAL
SQL Injection Authentication Bypass

📋 TL;DR

CVE-2021-43140 is a critical SQL injection vulnerability in Simple Subscription Website 1.0 that allows attackers to execute arbitrary SQL commands through the login functionality. This affects all deployments of this specific software version, potentially leading to complete system compromise.

💻 Affected Systems

Products:
  • Sourcecodester Simple Subscription Website
Versions: 1.0
Operating Systems: Any
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 1.0 are vulnerable. The vulnerability exists in the login functionality.

📦 What is this software?

Simple Subscription Website by Oretnom23

View all CVEs affecting Simple Subscription Website →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, modification, deletion, and potential remote code execution leading to full system takeover.

🟠

Likely Case

Authentication bypass allowing unauthorized access to the application, followed by data exfiltration and privilege escalation.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries preventing SQL injection.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: CONFIRMED
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Multiple public exploit scripts available. Exploitation requires no authentication and is straightforward.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: N/A

Vendor Advisory: N/A

Restart Required: No

Instructions:

No official patch available. Upgrade to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Implement Input Validation

all

Add server-side input validation to sanitize login parameters

Modify login.php to validate and sanitize user input before SQL queries

Use Parameterized Queries

all

Replace direct SQL string concatenation with prepared statements

Update database queries in login.php to use parameterized queries

🧯 If You Can't Patch

  • Implement WAF rules to block SQL injection patterns
  • Restrict network access to only trusted IP addresses

🔍 How to Verify

Check if Vulnerable:

Test login form with SQL injection payloads like ' OR '1'='1

Check Version:

Check application version in admin panel or source code

Verify Fix Applied:

Attempt SQL injection payloads after implementing fixes to confirm they're blocked

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in application logs
  • Multiple failed login attempts with SQL patterns

Network Indicators:

  • HTTP POST requests to login.php containing SQL keywords

SIEM Query:

source=web_logs AND uri="/login.php" AND (payload="' OR" OR payload="UNION" OR payload="SELECT")

📊 Metadata

CVE ID: CVE-2021-43140
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: November 3, 2021
Last Updated: February 24, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-43140, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)