| Titel | SourceCodester website 1.0 Web application vulnerability |
|---|
| Beschreibung | I have discovered a SQL injection vulnerability on the engineers' portal, enabling an attacker to bypass the admin login page.
1- Download the application from https://www.sourcecodester.com/php/13115/engineers-online-portal-php.html and install it on your system.
2- Visit the admin login page at http://localhost/engineer/admin/.
3- Enter this payload (admin' or '1'='1) in both the username and password fields.
4- The admin panel will now be bypassed." |
|---|
| Quelle | ⚠️ https://www.sourcecodester.com/php/13115/engineers-online-portal-php.html |
|---|
| Benutzer | Farish (UID 60730) |
|---|
| Einreichung | 01.01.2024 12:08 (vor 2 Jahren) |
|---|
| Moderieren | 01.01.2024 16:37 (4 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 249440 [SourceCodester Engineers Online Portal 1.0 Admin Login /admin/ username/password SQL Injection] |
|---|
| Punkte | 20 |
|---|