| عنوان | a4m4 Student-Management-System--PHP- 1.0 Unauthenticated Access |
|---|
| الوصف | The `admin/deleteform.php` and `admin/updatedata.php` scripts handle crucial data manipulation tasks (student deletion and updates), yet they completely lack any form of authentication or authorisation. Neither `session_start()` nor the usual session validation code is present. The scripts immediately process the incoming HTTP request and execute SQL statements.
Example from `admin/deleteform.php` (lines 3–6):
```php
include ('../dbcon.php');
$id = $_REQUEST['sid'];
$qry = "DELETE FROM `student` WHERE `id`= '$id' ";
```
Because these endpoints are accessible to anyone who knows the path, an unauthenticated attacker can arbitrarily delete or modify student records, causing severe data integrity and availability issues. |
|---|
| المصدر | ⚠️ https://github.com/a4m4/Student-Management-System--PHP-/issues/3 |
|---|
| المستخدم | oxygen (UID 97921) |
|---|
| ارسال | 11/05/2026 06:10 AM (24 أيام منذ) |
|---|
| الاعتدال | 31/05/2026 04:16 PM (20 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 367551 [a4m4 Student-Management-System حتى f0c5f6842c5e8c431ff02b5260a565ca844df3a0 admin/deleteform.php sid تجاوز الصلاحيات] |
|---|
| النقاط | 20 |
|---|