إرسال #733344: PHPGurukul Online Course Registration System ≤ 3.1 SQL Injectionالمعلومات

عنوان	PHPGurukul Online Course Registration System ≤ 3.1 SQL Injection
الوصف	A critical SQL Injection vulnerability was discovered in PHPGurukul Online Course Registration System v3.1. The vulnerability exists in the file /enroll.php, where multiple POST parameters (studentregno, Pincode, session, department, level, course, sem) are directly concatenated into an INSERT SQL query without any input validation or sanitization. An authenticated attacker can inject malicious SQL commands to extract sensitive data or compromise the database.
المصدر	⚠️ https://note-hxlab.wetolink.com/share/qX132pk8Wofk
المستخدم	angelkate (UID 94159)
ارسال	07/01/2026 07:21 AM (5 أشهر منذ)
الاعتدال	09/01/2026 10:42 AM (2 days later)
الحالة	تمت الموافقة
إدخال VulDB	340255 [PHPGurukul Online Course Registration System حتى 3.1 /enroll.php حقن SQL]
النقاط	20

Might our Artificial Intelligence support you?

Check our Alexa App!