Enviar #388831: SourceCodester Sourcecodester Car Driving School Management System 1.0 SQL injectioninformación

TítuloSourceCodester Sourcecodester Car Driving School Management System 1.0 SQL injection
DescripciónAfter receiving the id parameter passed in through the get method in the Master.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
Fuente⚠️ https://github.com/BFS-Lab/BFSDV/blob/main/Sourcecodester%20Online%20Catering%20Reservation%20System%20SQL%20Injection-8.md
Usuario
 BFS-Lab (UID 73306)
Sumisión2024-08-10 10:25 (hace 2 años)
Moderación2024-08-10 18:36 (8 hours later)
EstadoAceptado
Entrada de VulDB274128 [Sourcecodester Car Driving School Management System 1.0 Master.php?f=save_package ID inyección SQL]
Puntos17

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!