| Titre | itsourcecode Online House Rental System 1.0 SQL Injection |
|---|
| Description | Attackers can craft malicious SQL statements and inject them into legitimate SQL queries, thereby achieving unauthorized access and manipulation of the database. This technique allows attackers to bypass the security mechanisms implemented at the application layer and directly perform operations on the database, such as reading, modifying, or deleting data. In severe cases, it may even grant attackers administrative control over the database. Such vulnerabilities pose a critical threat to the confidentiality, integrity, and availability of the system, potentially leading to data breaches, service disruption, or complete system compromise, thereby causing profound harm to business operations and user privacy. |
|---|
| La source | ⚠️ https://github.com/zhengdexu-bot/zhengdexu/issues/4 |
|---|
| Utilisateur | zhengdexu (UID 98083) |
|---|
| Soumission | 09/05/2026 07:22 (il y a 26 jours) |
|---|
| Modérer | 31/05/2026 12:19 (22 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 367530 [itsourcecode Online House Rental System 1.0 /manage_tenant.php ID injection SQL] |
|---|
| Points | 20 |
|---|