إرسال #607526: Pharmacy-management-system commit a2efc84 SQL Injectionالمعلومات

عنوانPharmacy-management-system commit a2efc84 SQL Injection
الوصفThe parameters `med_name`, `med_cat`, and `ex_date` in quantity_upd.php are not sanitized and are directly used in a database query via `mysqli_query`, resulting in a time-based blind SQL injection vulnerability
المصدر⚠️ https://github.com/horytick/CVE/blob/main/SQL%20Injection%20Vulnerability%20in%20Pharmacy%20Management%20System.md
المستخدم
 moss_mo (UID 47882)
ارسال01/07/2025 08:13 PM (10 أشهر منذ)
الاعتدال07/07/2025 10:53 AM (6 days later)
الحالةتمت الموافقة
إدخال VulDB315138 [krishna9772 Pharmacy Management System حتى a2efc8442931ec9308f3b4cf4778e5701153f4e5 quantity_upd.php med_name/med_cat/ex_date حقن SQL]
النقاط17

التالي نظرة عامة السابق

Interested in the pricing of exploits?

See the underground prices here!