Enviar #619313: code-projects Public Chat Room 1.0 SQL Injectioninformación

Títulocode-projects Public Chat Room 1.0 SQL Injection
DescripciónThis vulnerability exists in the "login.php" file, where the "username" parameter submitted by the user is directly concatenated into a SQL query without proper escaping or parameterization. An attacker can craft malicious SQL statements and inject them via POST requests to bypass authentication, retrieve sensitive database information, or manipulate the database.
Fuente⚠️ https://github.com/BalanceLee/CVE/issues/5
Usuario balancelee (UID 87843)
Sumisión2025-07-20 16:00 (hace 11 meses)
Moderación2025-07-21 11:25 (19 hours later)
EstadoAceptado
Entrada de VulDB317096 [code-projects Public Chat Room 1.0 /login.php Nombre de usuario inyección SQL]
Puntos19

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!