Soumettre #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectioninformation

Titresourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
DescriptionEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
La source⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
Utilisateur
 rtsjx (UID 72133)
Soumission21/07/2024 04:28 (il y a 2 ans)
Modérer21/07/2024 17:17 (13 hours later)
StatutAccepté
Entrée VulDB272121 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 manage_employee ID injection SQL]
Points20

Do you know our Splunk app?

Download it now for free!