| عنوان | code-projects Human Resource Integrated System 1.0 SQL Injection |
|---|
| الوصف | The id parameter in log_query.php is vulnerable to SQL injection due to improper input validation and the absence of parameterized queries. An attacker can exploit this weakness by injecting malicious SQL statements to manipulate database queries, which may lead to unauthorized access, data extraction, or modification of sensitive information. |
|---|
| المصدر | ⚠️ https://github.com/cooorgi/cve/blob/main/hris_sql_log_query.md |
|---|
| المستخدم | cooorgi (UID 80520) |
|---|
| ارسال | 22/08/2025 08:11 PM (10 أشهر منذ) |
|---|
| الاعتدال | 30/08/2025 06:47 PM (8 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 322039 [code-projects Human Resource Integrated System 1.0 /log_query.php معرف حقن SQL] |
|---|
| النقاط | 19 |
|---|