| Título | PHPGurukul Student Record System 3.20 SQL Injection |
|---|
| Descripción | Student Record Managment System 3.20 allows SQL Injection via the 'sub1', 'sub2' , 'sub3', 'sub4' and 'udate' parameters in "http://localhost/studentrecordms/edit-subject.php". Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit the latest vulnerabilities in the underlying database. |
|---|
| Fuente | ⚠️ https://github.com/BurakSevben/CVEs/blob/main/Student%20Record%20System%203.20/Student%20Record%20System%20-%20SQL%20Injection%20-%204.md |
|---|
| Usuario | Burak (UID 65788) |
|---|
| Sumisión | 2024-04-14 16:32 (hace 2 años) |
|---|
| Moderación | 2024-04-14 21:50 (5 hours later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 260618 [PHPGurukul Student Record System 3.20 /edit-subject.php sub1/sub2/sub3/sub4/udate inyección SQL] |
|---|
| Puntos | 18 |
|---|