| Titre | code-projects Student Information System 2.0 SQL Injection |
|---|
| Description | In the index.php file of Student Information System, theuser username parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and server permissions |
|---|
| La source | ⚠️ https://github.com/asd1238525/cve/blob/main/SQL13.md |
|---|
| Utilisateur | yunlin (UID 79129) |
|---|
| Soumission | 02/11/2025 10:29 (il y a 5 mois) |
|---|
| Modérer | 15/11/2025 07:57 (13 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 332567 [code-projects Student Information System 2.0 /index.php Nom d'utilisateur injection SQL] |
|---|
| Points | 17 |
|---|