Enviar #640113: code-projects Human Resource Integrated System 1.0 SQL Injectioninformación

Títulocode-projects Human Resource Integrated System 1.0 SQL Injection
DescripciónThe employee_id and date parameters in login_attendance2.php are not properly sanitized or parameterized, making them vulnerable to SQL injection. An attacker could exploit this vulnerability by injecting malicious SQL code to manipulate database queries. An attacker could leverage a time-based SQL injection method and a error-based SQL injection method.
Fuente⚠️ https://github.com/cooorgi/cve/blob/main/hris_sql_login_attendance2.md
Usuario
 cooorgi (UID 80520)
Sumisión2025-08-22 20:13 (hace 10 meses)
Moderación2025-08-30 18:47 (8 days later)
EstadoAceptado
Entrada de VulDB322042 [code-projects Human Resource Integrated System 1.0 login_attendance2.php employee_id/date inyección SQL]
Puntos19

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!