| Titel | code-projects Simple Leave Manager 1.0 SQL Injection |
|---|
| Beschreibung | In the user.php file of Simple Leave Manager, theuser table parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and server permissions |
|---|
| Quelle | ⚠️ https://github.com/asd1238525/cve/blob/main/SQL8.md |
|---|
| Benutzer | 86xx (UID 91400) |
|---|
| Einreichung | 08.10.2025 10:55 (vor 9 Monaten) |
|---|
| Moderieren | 09.10.2025 14:10 (1 day later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 327716 [code-projects Simple Leave Manager 1.0 /user.php table SQL Injection] |
|---|
| Punkte | 17 |
|---|