| Titel | itsourcecode Construction Management System V1.0 SQL Injection |
|---|
| Beschreibung | During the security review of "Construction Management System", a critical SQL injection vulnerability was discovered in the "/borrowed_equip.php" file. attackers can inject malicious SQL queries through this parameter. Immediate remedial measures are needed to ensure system security and protect data integrity. |
|---|
| Quelle | ⚠️ https://github.com/Learner636/CVE-smbmit/issues/4 |
|---|
| Benutzer | Yeliuyun (UID 94203) |
|---|
| Einreichung | 23.03.2026 10:06 (vor 15 Tagen) |
|---|
| Moderieren | 06.04.2026 09:44 (14 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 355484 [itsourcecode Construction Management System 1.0 Parameter /borrowed_equip.php emp SQL Injection] |
|---|
| Punkte | 18 |
|---|