Submit #311601: https://www.sourcecodester.com Online Courseware 1.0 SQL Injection
Title | https://www.sourcecodester.com Online Courseware 1.0 SQL Injection |
---|---|
Description | A critical vulnerability has been discovered in the Online Courseware. This affects the admin/activateteach.php file. Operations on the parameter selector[] result in sql injection. Attackers could use it to access, delete or alter sensitive data without authorization: customer information, personal data, trade secrets, intellectual property, etc. |
Source | ⚠️ https:/ |
User | liuann (ID 67227) |
Submission | 04/06/2024 12:05 (25 days ago) |
Moderation | 04/06/2024 13:02 (57 minutes later) |
Accepted | Accepted |
VulDB Entry | VDB-259595 |