| Title | Source Codester Best church management software 1.1 SQL Injection |
|---|
| Description | A vulnerability has been found in SourceCodester Best church management software 1.1 and classified as critical. SourceCodester Best church management software 1.1 has a SQL Injection vulnerability in /admin/app/role_crud.php. Affected is file /admin/app/role_crud.php,The manipulation of the argument `id` leads to SQL inject. Remote attackers can leverage time-based blind SQL injection to extract data from the database. |
|---|
| Source | ⚠️ https://github.com/Yesec/Best-church-management-software/blob/main/role_crud.php_SQLi.md |
|---|
| User | YeSec (UID 50956) |
|---|
| Submission | 02/08/2025 10:47 AM (3 months ago) |
|---|
| Moderation | 02/10/2025 05:04 PM (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB Entry | 295107 [SourceCodester Best Church Management Software 1.1 /admin/app/role_crud.php ID sql injection] |
|---|
| Points | 20 |
|---|