Submit #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectioninfo

Titlesourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
DescriptionEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
Source⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
User
 rtsjx (ID 72133)
Submission21/07/2024 04:28 (3 months ago)
Moderation21/07/2024 17:17 (13 hours later)
StatusAccepté
VulDB Entry272121
Points20

Do you know our Splunk app?

Download it now for free!