| عنوان | SourceCodester Best House Rental Management System 1.0 SQL Injection |
|---|
| الوصف | At "/index.php?page=view_payment&id=abc", the GET parameter id is untrusted data and goes directly into an SQL query without any sanitization or validation, this allows any authenticated user can do an SQL injection, which could damage the entire database. |
|---|
| المصدر | ⚠️ https://drive.google.com/file/d/1UeP0zPOIJ3KgfWMh5IrnkDLeJjrIP4eG/view?usp=sharing |
|---|
| المستخدم | dwgth4i (UID 74608) |
|---|
| ارسال | 09/09/2024 12:57 PM (2 سنوات منذ) |
|---|
| الاعتدال | 09/09/2024 04:53 PM (4 hours later) |
|---|
| الحالة | مكرر |
|---|
| إدخال VulDB | 265073 [SourceCodester Best House Rental Management System 1.0 view_payment.php معرف حقن SQL] |
|---|
| النقاط | 0 |
|---|