Title | code projects Cinema Seat Reservation System 1.0 SQL Injection |
---|
Description | Vulnerable to SQL Injection via the id parameter at /admin/deleteBooking.php. Unauthenticated attacker can manipulate SQL queries, as demonstrated by the payload `1 OR SLEEP(5)--` , which delays execution by 5 seconds |
---|
User | Anonymous User |
---|
Submission | 01/07/2025 07:33 PM (1 month ago) |
---|
Moderation | 01/08/2025 06:50 PM (23 hours later) |
---|
Status | Accepted |
---|
VulDB Entry | 290827 [code-projects Cinema Seat Reservation System 1.0 /admin/deleteBooking.php id sql injection] |
---|
Points | 14 |
---|