Submit #546164: PHPGurukul Restaurant Table Booking System 1.0 SQL Injectioninfo

TitelPHPGurukul Restaurant Table Booking System 1.0 SQL Injection
BeschreibungWhile conducting a security review of "RTBS Project PH", I discovered a critical SQL injection vulnerability in the "/admin/add-subadmin.php" file. The vulnerability stems from insufficient user input validation of the "fullname" parameter, allowing an attacker to inject malicious SQL queries. As a result, attackers can gain unauthorized access to the database, modify or delete data, and access sensitive information. Immediate remedial action is required to ensure system security and protect data integrity.
Quelle⚠️ https://github.com/Camllia2024/mycve/issues/1
Benutzer
 Camllia218 (UID 83396)
Einreichung30.03.2025 10:43 (vor 1 Jahr)
Moderieren03.04.2025 15:25 (4 days later)
StatusAkzeptiert
VulDB Eintrag303170 [PHPGurukul Restaurant Table Booking System 1.0 /admin/add-subadmin.php fullname SQL Injection]
Punkte20

ZurückÜbersichtWeiter

Want to know what is going to be exploited?

We predict KEV entries!