إرسال #654077: code-projects Online Bidding System 1.0 SQL Injectionالمعلومات

عنوانcode-projects Online Bidding System 1.0 SQL Injection
الوصفDuring the security review of "ONLINE BIDDING SYSTEM," a critical SQL injection vulnerability was discovered in the "bidupdate.php" file. This vulnerability results from inadequate validation of the 'id' parameter, allowing attackers to inject malicious SQL queries. As a result, attackers could gain unauthorized access to databases, modify or delete data, and access sensitive information. Immediate remedial measures are necessary to ensure system security and protect data integrity.
المصدر⚠️ https://github.com/jackhong1236/cve_0/blob/main/12/tmp25/report.md
المستخدم
 hong zeng (UID 90188)
ارسال14/09/2025 10:44 AM (7 أشهر منذ)
الاعتدال21/09/2025 11:26 AM (7 days later)
الحالةتمت الموافقة
إدخال VulDB325152 [code-projects Online Bidding System 1.0 bidupdate.php معرف حقن SQL]
النقاط20

التالي نظرة عامة السابق

Do you need the next level of professionalism?

Upgrade your account now!