Enviar #502071: code-projects Real Estate Property Management System php 1/0 SQL INJECTIONinformación

Títulocode-projects Real Estate Property Management System php 1/0 SQL INJECTION
DescripciónIn $id parameter in ajax_state.php. An unrestricted SQL injection attack exists in an Real Estate Property Management System. The parameters that can be controlled are as follows: $id. This function executes the id parameter into the SQL statement without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.A malicious attacker also could update the data via this vulnerability.
Fuente⚠️ https://github.com/fjl1113/cve/blob/main/sql-fjl.md
Usuario
 fjl1113 (UID 81546)
Sumisión2025-02-16 14:14 (hace 1 Año)
Moderación2025-02-22 11:48 (6 days later)
EstadoAceptado
Entrada de VulDB296551 [code-projects Real Estate Property Management System 1.0 /ajax_state.php StateName inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you need the next level of professionalism?

Upgrade your account now!