| Título | code-projects Simple Leave Manager 1.0 SQL Injection |
|---|
| Descripción | In the user.php file of Simple Leave Manager, theuser table parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and server permissions |
|---|
| Fuente | ⚠️ https://github.com/asd1238525/cve/blob/main/SQL8.md |
|---|
| Usuario | 86xx (UID 91400) |
|---|
| Sumisión | 2025-10-08 10:55 (hace 9 meses) |
|---|
| Moderación | 2025-10-09 14:10 (1 day later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 327716 [code-projects Simple Leave Manager 1.0 /user.php table inyección SQL] |
|---|
| Puntos | 17 |
|---|