Enviar #682565: sourcecodester Survey Application System 1.0 SQL Injectioninformación

Títulosourcecodester Survey Application System 1.0 SQL Injection
Descripciónview_survey.php directly interpolates $_GET['id'] into an SQL statement without validation or prepared statements. An attacker controlling the id parameter can inject SQL that does not return visible differences but creates measurable delays on the database server. This enables time-based blind SQL injection. The vulnerability is exploitable remotely and without authentication.
Fuente⚠️ https://github.com/lakshayyverma/CVE-Discovery/blob/main/Survey%20Application%20System%202%20.md
Usuario
 lakshay12311 (UID 91298)
Sumisión2025-10-26 10:48 (hace 6 meses)
Moderación2025-11-12 13:43 (17 days later)
EstadoAceptado
Entrada de VulDB332187 [SourceCodester Survey Application System 1.0 /view_survey.php ID inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!