Submit #497357: codeprojects Wazifa v1.0 SQL Injectioninfo

Titelcodeprojects Wazifa v1.0 SQL Injection
BeschreibungAn unrestricted SQL injection attack exists in an Wazifa in php system in control.php. The parameters that can be controlled are as follows: $to. This function executes the id parameter into the SQL statement without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
Quelle⚠️ https://github.com/nanguawuming/CVE2/blob/main/cve3.pdf
Benutzer
 eXVtaW5n (UID 81300)
Einreichung09.02.2025 19:39 (vor 1 Jahr)
Moderieren10.02.2025 20:07 (1 day later)
StatusAkzeptiert
VulDB Eintrag295147 [code-projects Wazifa System 1.0 /controllers/control.php to SQL Injection]
Punkte19

ZurückÜbersichtWeiter

Want to know what is going to be exploited?

We predict KEV entries!