| Titel | sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection |
|---|
| Beschreibung | In Master.php, the $employee_code parameter is controllable and directly brought into the SQL statement for execution, causing a SQL injection vulnerability. |
|---|
| Quelle | ⚠️ https://github.com/Xu-Mingming/cve/blob/main/sql.md |
|---|
| Benutzer | Xu Mingming (UID 70318) |
|---|
| Einreichung | 13.06.2024 03:38 (vor 2 Jahren) |
|---|
| Moderieren | 13.06.2024 17:24 (14 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 268422 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php?f=log_employee employee_code SQL Injection] |
|---|
| Punkte | 16 |
|---|