Enviar #388767: SourceCodester Sourcecodester Online Car Driving School Management System 1.0 SQL Injectioninformación

TítuloSourceCodester Sourcecodester Online Car Driving School Management System 1.0 SQL Injection
DescripciónAfter receiving the id parameter passed in through the get method in the manage_user.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
Fuente⚠️ https://github.com/BFS-Lab/BFSDV/blob/main/Sourcecodester%20Online%20Catering%20Reservation%20System%20SQL%20Injection-1.md
Usuario
 BFS-Lab (UID 73306)
Sumisión2024-08-10 06:23 (hace 2 años)
Moderación2024-08-10 10:19 (4 hours later)
EstadoAceptado
Entrada de VulDB274121 [SourceCodester Car Driving School Management System 1.0 manage_user.php ID inyección SQL]
Puntos18

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!