إرسال #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectionالمعلومات

عنوانsourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
الوصفEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
المصدر⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
المستخدم
 rtsjx (UID 72133)
ارسال21/07/2024 04:28 AM (2 سنوات منذ)
الاعتدال21/07/2024 05:17 PM (13 hours later)
الحالةتمت الموافقة
إدخال VulDB272121 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 manage_employee معرف حقن SQL]
النقاط20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!