| Titel | PHPGurukul User Registration & Login and User Management System 3.3 SQL Injection |
|---|
| Beschreibung | The application does not sanitize the id parameter in the admin panel (lastthirtyays-reg-users.php). This allows attackers to inject arbitrary SQL queries using time-based blind techniques to bypass filters and extract information from the database. |
|---|
| Quelle | ⚠️ https://github.com/secfake/mycve/issues/2 |
|---|
| Benutzer | anhtrankma (UID 88207) |
|---|
| Einreichung | 22.07.2025 08:32 (vor 9 Monaten) |
|---|
| Moderieren | 25.07.2025 08:49 (3 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 317571 [PHPGurukul User Registration & Login and User Management 3.3 lastthirtyays-reg-users.php ID SQL Injection] |
|---|
| Punkte | 17 |
|---|