Enviar #797263: code-projects.org Simple Content Management System In PHP 1.0 SQL Injectioninformación

Títulocode-projects.org Simple Content Management System In PHP 1.0 SQL Injection
DescripciónA SQL Injection vulnerability exists in Simple Content Management System 1.0. The file /web/admin/login.php does not sanitize the 'user' parameter before passing it to the SQL query. An unauthenticated attacker can bypass authentication by injecting a boolean-based payload into the username field, gaining full admin access without valid credentials.
Fuente⚠️ https://github.com/Xmyronn/simple-cms-sqli-login-bypass-CVE-HUNT-
Usuario
 imad alvi (UID 97088)
Sumisión2026-04-05 02:38 (hace 2 meses)
Moderación2026-04-13 10:24 (8 days later)
EstadoAceptado
Entrada de VulDB357105 [code-projects Simple Content Management System 1.0 /web/admin/login.php Usuario inyección SQL]
Puntos19

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!