Enviar #797302: SourceCodester SourceCodester KLiK Social Media Website v1.0.1 SQL Injectioninformación

TítuloSourceCodester SourceCodester KLiK Social Media Website v1.0.1 SQL Injection
DescripciónSQL Injection vulnerability in /includes/get_message_ajax.php via c_id parameter. Unauthenticated attackers can execute arbitrary SQL commands using time-based blind injection (SLEEP(5)) and UNION-based injection to extract database information including user credentials, private messages, and system data.
Fuente⚠️ https://github.com/msaad1999/KLiK-SocialMediaWebsite
Usuario
 g111 (UID 92409)
Sumisión2026-04-05 07:54 (hace 23 días)
Moderación2026-04-24 22:22 (20 days later)
EstadoAceptado
Entrada de VulDB359561 [KLiK SocialMediaWebsite hasta 1.0.1 Private Message get_message_ajax.php c_id inyección SQL]
Puntos18

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!