| عنوان | code-projects Easy Blog Site V1.0 SQL Injection |
|---|
| الوصف | This code is used to query whether the current account exists in the database. At the same time, the username and password have not been filtered in any way, nor have they been normalized through function conversion, which allows any password to successfully log in to the account. For example: set username=admin' -- q The password can be filled in at will, and you can log in to the user |
|---|
| المصدر | ⚠️ https://github.com/MyMySSS/cve/blob/main/cve.md |
|---|
| المستخدم | MyMy (UID 96642) |
|---|
| ارسال | 23/03/2026 01:49 PM (26 أيام منذ) |
|---|
| الاعتدال | 05/04/2026 10:41 PM (13 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 355434 [code-projects Easy Blog Site 1.0 login.php username/password حقن SQL] |
|---|
| النقاط | 20 |
|---|