| Título | code-projects Simple Online Hotel Reservation System 2.0 SQL Injection |
|---|
| Descripción | In the add_account.php file of Simple Online Hotel Reservation System, theuser name parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and server permissions |
|---|
| Fuente | ⚠️ https://github.com/asd1238525/cve/blob/main/SQL10.md |
|---|
| Usuario | yunlin (UID 79129) |
|---|
| Sumisión | 2025-10-17 12:33 (hace 8 meses) |
|---|
| Moderación | 2025-11-01 16:58 (15 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 330889 [code-projects Simple Online Hotel Reservation System 2.0 /admin/add_account.php Nombre inyección SQL] |
|---|
| Puntos | 18 |
|---|