| Title | code projects Cinema Seat Reservation System 1.0 SQL Injection |
|---|
| Description | Vulnerable to SQL Injection via the id parameter at /admin/deleteBooking.php. Unauthenticated attacker can manipulate SQL queries, as demonstrated by the payload `1 OR SLEEP(5)--` , which delays execution by 5 seconds |
|---|
| User | Anonymous User |
|---|
| Submission | 01/07/2025 07:33 PM (1 Year ago) |
|---|
| Moderation | 01/08/2025 06:50 PM (23 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 290827 [code-projects Cinema Seat Reservation System 1.0 /admin/deleteBooking.php ID sql injection] |
|---|
| Points | 14 |
|---|