Enviar #521452: PHPGurukul Bank Locker Management System V1.0 SQL Injectioninformación

TítuloPHPGurukul Bank Locker Management System V1.0 SQL Injection
DescripciónDuring the security review of "Bank Locker Management System",I discovered a critical SQL injection vulnerability "/banker/profile.php" file. This vulnerability stems from insufficient user input validation of the 'mobilenumber' parameter, allowing attackers to inject malicious SQL queries. Therefore, attackers can gain unauthorized access to databases, modify or delete data, and access sensitive information. Immediate remedial measures are needed to ensure system security and protect data integrity.
Fuente⚠️ https://github.com/ARPANET-cyber/CVE/issues/12
Usuario
 Anonymous User
Sumisión2025-03-17 02:35 (hace 1 Año)
Moderación2025-03-22 16:21 (6 days later)
EstadoAceptado
Entrada de VulDB300700 [PHPGurukul Bank Locker Management System 1.0 /profile.php mobilenumber inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!