| عنوان | Advocate office management system free download edit_case.php V1.0 SQL Injection |
|---|
| الوصف | The 49 line of the edit_case.php file uses the PHP method to retrieve user input from the GET element. Then, the value of this element is passed to the code without proper cleaning or validation, and ultimately used for database queries. This may lead to SQL injection attacks.
chaosheng001 has discovered that due to insufficient protection of the "id" parameter in the "edit_case.php" file, "Advocate office management system free download" there is a serious security vulnerability in the This vulnerability may be used to inject malicious SQL queries, resulting in unauthorized access and extraction of sensitive information from the database. |
|---|
| المصدر | ⚠️ https://github.com/Hefei-Coffee/cve/issues/16 |
|---|
| المستخدم | chaosheng001 (UID 82713) |
|---|
| ارسال | 12/03/2025 04:06 PM (1 سنة منذ) |
|---|
| الاعتدال | 21/03/2025 09:37 PM (9 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 300628 [SourceCodester Kortex Lite Advocate Office Management System 1.0 edit_case.php معرف حقن SQL] |
|---|
| النقاط | 20 |
|---|