Vulnerabilities

CVE-2021-47777 - Build Smart ERP 21.0817 - 'eidValue' SQL Injection (Unauthenticated) - 2025 Update

2026-01-15 0 views admin

CVE ID : CVE-2021-47777 Published : Jan. 15, 2026, 3:52 p.m. | 12 minutes ago Description : Build Smart ERP 21.0817 contains an unauthenticated SQL injection vulnerability in the 'eidValue' parameter of the login validation endpoint. Attackers can inject stacked SQL queries using payloads like ';WAITFOR DELAY '0:0:3'-- to manipulate database queries and potentially extract or modify database information. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2021-47777

Severity

HIGH

Published

Jan. 15, 2026

Impact: SQL injection

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2021-47777high

CVE-2021-47777 - Build Smart ERP 21.0817 - 'eidValue' SQL Injection (Unauthenticated) - 2025 Update

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2021-47763 - Aimeos Laravel ecommerce platform 2021.10 LTS - 'sort' SQL injection (2026)

Report: CVE-2021-47762 - HTTPDebuggerPro 9.11 - Unquoted Service Path

Latest: CVE-2021-47765 - AbsoluteTelnet 11.24 - 'Username' Denial of Service (PoC)

Update: CVE-2021-47764 - AbsoluteTelnet 11.24 - 'Phone' Denial of Service (PoC)

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting