Submit #484184: Security Advisory CodeZips Gym Management System V1.0 sqlinfo

TitleSecurity Advisory CodeZips Gym Management System V1.0 sql
DescriptionA critical SQL injection vulnerability exists in the `usrid` parameter within `/dashboard/admin/health_status_entry.php`. Attackers can inject arbitrary SQL code via specially crafted values, bypassing input validation. This could lead to unauthorized database access, data manipulation, and potentially full system compromise.
Source⚠️ https://github.com/LiuSir5211314/-sir/issues/1
User
 liu_my (UID 80323)
Submission01/17/2025 04:17 AM (4 months ago)
Moderation01/18/2025 08:38 AM (1 day later)
StatusAccepted
VulDB Entry292523 [Codezips Gym Management System 1.0 health_status_entry.php usrid sql injection]
Points19

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!