| Titel | SQL injection vulnerability in Student Attendance Management System |
|---|
| Beschreibung | SQL injection vulnerability in Student Attendance Management System。input [email protected] / Password@123 Log in to the background. Then modify the information in createClass Php, the ID is assigned to the variable $ID, and then inserted into the database for query, and the query information is returned, However, there is no filtering,causing a SQL injection vulnerability |
|---|
| Quelle | ⚠️ https://github.com/rickxy/Student-Attendance-Management-System/issues/2 |
|---|
| Benutzer | ace. (UID 34853) |
|---|
| Einreichung | 17.11.2022 07:54 (vor 4 Jahren) |
|---|
| Moderieren | 17.11.2022 16:10 (8 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 213845 [Student Attendance Management System /Admin/createClass.php ID SQL Injection] |
|---|
| Punkte | 20 |
|---|