Enviar #780398: code-projects Student Membership System 1.0 SQL Injectioninformación

Títulocode-projects Student Membership System 1.0 SQL Injection
DescripciónIn the user registration feature, user-submitted $_POST data is directly concatenated into SQL queries without any filtering or parameterization. An attacker could execute arbitrary SQL commands by crafting malicious input, potentially leading to data leaks, data tampering, or complete control over the database. Impact: An attacker can execute arbitrary SQL commands, including deleting tables, reading sensitive data, modifying data, and gaining a database shell, thereby gaining complete control over the database.
Fuente⚠️ https://github.com/maidangdang1/CVE/issues/1
Usuario
 nomath (UID 96446)
Sumisión2026-03-15 10:25 (hace 20 días)
Moderación2026-03-31 00:24 (16 days later)
EstadoAceptado
Entrada de VulDB354293 [code-projects Student Membership System 1.0 User Registration inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!