| Title | Campcodes Online Laundry Management System 1.0 SQL Injection |
|---|
| Description | A vulnerability was found in Campcodes Online Laundry Management System, impacting the page /manage_user.php. The value of user input (id parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack |
|---|
| Source | ⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Laundry%20Management%20System/sql_manage_user.md |
|---|
| User | yylm (UID 67976) |
|---|
| Submission | 05/10/2024 16:16 (11 months ago) |
|---|
| Moderation | 05/11/2024 08:18 (16 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB Entry | 263894 [Campcodes Online Laundry Management System 1.0 /manage_user.php ID sql injection] |
|---|
| Points | 19 |
|---|