Submit #343427: SourceCodester Best House Rental Management System 1.0 SQL injectioninfo

TitelSourceCodester Best House Rental Management System 1.0 SQL injection
BeschreibungAfter receiving the id parameter passed in through the get method in the manage_user.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
Quelle⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester_House_Rental_Management_System_Sql_Inject-1.md
Benutzer
 rocker (UID 62454)
Einreichung23.05.2024 16:04 (vor 2 Jahren)
Moderieren25.05.2024 08:11 (2 days later)
StatusAkzeptiert
VulDB Eintrag266275 [SourceCodester Best House Rental Management System bis 1.0 manage_user.php ID SQL Injection]
Punkte18

Do you know our Splunk app?

Download it now for free!