Enviar #424337: code-projects Pharmacy Management System 1.0 SQL Injectioninformación

Títulocode-projects Pharmacy Management System 1.0 SQL Injection
DescripciónA critical SQL injection vulnerability was identified in the Pharmacy Management System version 1.0, specifically in the Manage Supplier search functionality. This flaw occurs through the text parameter sent via a GET request to the endpoint /php/manage_supplier.php?action=search&text=a. Attackers can manipulate this parameter to execute arbitrary SQL commands, compromising the database's security and integrity.
Fuente⚠️ https://gist.github.com/higordiego/2bd0a94e480906a60ce83b8a4ec26957
Usuario
 c4ttr4ck (UID 75518)
Sumisión2024-10-15 23:27 (hace 2 años)
Moderación2024-10-16 08:05 (9 hours later)
EstadoAceptado
Entrada de VulDB280557 [code-projects Pharmacy Management System 1.0 manage_supplier.php?action=search text inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!