إرسال #343432: SourceCodester Best House Rental Management System 1.0 SQL injectionالمعلومات

عنوانSourceCodester Best House Rental Management System 1.0 SQL injection
الوصفAfter receiving the id parameter passed in through the get method in the manage_payment.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
المصدر⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester_House_Rental_Management_System_Sql_Inject-3.md
المستخدم
 rocker (UID 62454)
ارسال23/05/2024 04:07 PM (2 سنوات منذ)
الاعتدال25/05/2024 08:11 AM (2 days later)
الحالةتمت الموافقة
إدخال VulDB266277 [SourceCodester Best House Rental Management System حتى 1.0 manage_payment.php معرف حقن SQL]
النقاط18

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!