Submit #362872: School-Management-System---PHP-MySQL 1.0.1 SQL Injectioninfo

TitleSchool-Management-System---PHP-MySQL 1.0.1 SQL Injection
DescriptionAn sqlinjection has been discovered within version 1.0.1 of School-Management-System---PHP-MySQL in the “?aid” parameter in (/attendancelist.php?aid=*). This issue arises due the lack of input sanitization. vendor's github: https://github.com/lahirudanushka/School-Management-System---PHP-MySQL
Source⚠️ https://powerful-bulb-c36.notion.site/sql-injection-1-6b3c66351180485ea764561a47239907
User
 louay khammassi (UID 67114)
Submission06/22/2024 07:04 PM (6 months ago)
Moderation06/23/2024 08:59 PM (1 day later)
StatusAccepted
VulDB Entry269487 [lahirudanushka School Management System 1.0.0/1.0.1 Attendance Report Page /attendancelist.php aid sql injection]
Points17

Interested in the pricing of exploits?

See the underground prices here!