Submit #309091: Sourcecodester Computer Laboratory Management System v1.0 SQL injectioninfo

TitelSourcecodester Computer Laboratory Management System v1.0 SQL injection
BeschreibungAn SQL Injection vulnerability has been identified in the /view_borrow function via the id parameter of Sourcecodester Computer Laboratory Management System affecting version 1.0 The vulnerability arises due to insufficient input validation and sanitation of user-supplied data in the /view_borrow function. An attacker can exploit this vulnerability to execute arbitrary SQL commands in the application's backend database, leading to unauthorized access, data exfiltration, or database corruption.
Quelle⚠️ https://github.com/0xAlmighty/Vulnerability-Research/blob/main/SourceCodester/CLMS/SourceCodester-CLMS-SQLi.md
Benutzer
 almightysec (UID 67229)
Einreichung02.04.2024 23:02 (vor 2 Jahren)
Moderieren03.04.2024 07:05 (8 hours later)
StatusAkzeptiert
VulDB Eintrag259100 [SourceCodester Computer Laboratory Management System 1.0 view_borrow ID SQL Injection]
Punkte20

ZurückÜbersichtWeiter

Do you want to use VulDB in your project?

Use the official API to access entries easily!