| Titre | code-projects OnlineReviewerSystem 1.0 SQL Injection |
|---|
| Description | During the security assessment of "Online Reviewer System", a critical SQL injection vulnerability was detected in the "login/index.php" file. This vulnerability is attributed to the insufficient validation of user input for the "username" and "password" parameters. This inadequacy enables attackers to inject malicious SQL queries. |
|---|
| La source | ⚠️ https://github.com/liaoliao-hla/cve/issues/2 |
|---|
| Utilisateur | huat (UID 92445) |
|---|
| Soumission | 04/02/2026 07:38 (il y a 3 mois) |
|---|
| Modérer | 07/02/2026 10:13 (3 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 344868 [code-projects Online Reviewer System 1.0 Login /login/index.php username/password injection SQL] |
|---|
| Points | 19 |
|---|