Soumettre #343432: SourceCodester Best House Rental Management System 1.0 SQL injectioninformation

TitreSourceCodester Best House Rental Management System 1.0 SQL injection
DescriptionAfter receiving the id parameter passed in through the get method in the manage_payment.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
La source⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester_House_Rental_Management_System_Sql_Inject-3.md
Utilisateur
 rocker (UID 62454)
Soumission23/05/2024 16:07 (il y a 2 ans)
Modérer25/05/2024 08:11 (2 days later)
StatutAccepté
Entrée VulDB266277 [SourceCodester Best House Rental Management System jusqu’à 1.0 manage_payment.php ID injection SQL]
Points18

Do you want to use VulDB in your project?

Use the official API to access entries easily!