Submit #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectioninfo

Titelsourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
BeschreibungEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
Quelle⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
Benutzer
 rtsjx (UID 72133)
Einreichung21.07.2024 04:28 (vor 2 Jahren)
Moderieren21.07.2024 17:17 (13 hours later)
StatusAkzeptiert
VulDB Eintrag272121 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 manage_employee ID SQL Injection]
Punkte20

Do you want to use VulDB in your project?

Use the official API to access entries easily!