| Titel | PHPGurukul Phpgurukul Zoo Management System 2.1 SQL Injection |
|---|
| Beschreibung | While conducting a security review of "Zoo Management System", I discovered a critical SQL injection vulnerability in the "/admin/index.php" file. The vulnerability stems from insufficient user input validation of the "username" parameter, allowing an attacker to inject malicious SQL queries. As a result, attackers can gain unauthorized access to the database, modify or delete data, and access sensitive information. Immediate remedial action is required to ensure system security and protect data integrity. |
|---|
| Quelle | ⚠️ https://github.com/Camllia2024/mycve/issues/2 |
|---|
| Benutzer | Camllia218 (UID 83396) |
|---|
| Einreichung | 30.03.2025 13:42 (vor 1 Jahr) |
|---|
| Moderieren | 03.04.2025 17:48 (4 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 239221 [Zoo Management System 1.0/2.1 Admin Sign-in Page username/password SQL Injection] |
|---|
| Punkte | 0 |
|---|