إرسال #343431: SourceCodester Best House Rental Management System 1.0 SQL Injectionالمعلومات

عنوانSourceCodester Best House Rental Management System 1.0 SQL Injection
الوصفAfter receiving the id parameter passed in through the get method in the manage_tenant.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
المصدر⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester_House_Rental_Management_System_Sql_Inject-2.md
المستخدم
 rocker (UID 62454)
ارسال23/05/2024 04:06 PM (2 سنوات منذ)
الاعتدال25/05/2024 08:11 AM (2 days later)
الحالةتمت الموافقة
إدخال VulDB266276 [SourceCodester Best House Rental Management System حتى 1.0 manage_tenant.php معرف حقن SQL]
النقاط18

Do you want to use VulDB in your project?

Use the official API to access entries easily!