| عنوان | BP Monitoring Management System v1.0 Modify Password SQL Injection |
|---|
| الوصف | A vulnerability classified as severe has been discovered in the BP Monitoring Management System. The vulnerability appears in the modify user password section of the change password. php file. The operation on parameters currentpassword and newpassword will result in SQL injection, which can control SQL queries and cause database information leakage. This will pose a serious threat to system security and sensitive data within the system. Even disrupted the normal use of the system! |
|---|
| المصدر | ⚠️ https://github.com/vsdwef/BP-Monitoring-Management-System/blob/main/ChangePassword.php_SQL_English.pdf |
|---|
| المستخدم | carrie.lee (UID 44540) |
|---|
| ارسال | 08/04/2023 05:47 AM (3 سنوات منذ) |
|---|
| الاعتدال | 08/04/2023 08:12 AM (2 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 225336 [PHPGurukul BP Monitoring Management System 1.0 Change Password change-password.php كلمة المرور حقن SQL] |
|---|
| النقاط | 20 |
|---|