| Titel | Bus Dispatch and Information System in login_info has Sql injection vulnerabilities |
|---|
| Beschreibung | Bus Dispatch and Information System has Sql injection vulnerabilities. The vulnerability is located in the reach_city parameter of the adminHome.php file. The attacker can read and write arbitrarily to the database and obtain sensitive data without logging in the background.
|
|---|
| Quelle | ⚠️ https://github.com/mrwwrrhh/Bus_Dispatch_and_Information_System/blob/main/Bus%20Dispatch%20and%20Information%20System%20in%20login_info%20has%20Sql%20injection%20vulnerabilities.pdf |
|---|
| Benutzer | RonghanWu (UID 46801) |
|---|
| Einreichung | 15.05.2023 02:29 (vor 3 Jahren) |
|---|
| Moderieren | 17.05.2023 18:58 (3 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 229281 [code-projects Bus Dispatch and Information System 1.0 adminHome.php reach_city SQL Injection] |
|---|
| Punkte | 18 |
|---|