| Titre | a4m4 Student-Management-System--PHP- 1.0 Unauthenticated Access |
|---|
| Description | The `admin/deleteform.php` and `admin/updatedata.php` scripts handle crucial data manipulation tasks (student deletion and updates), yet they completely lack any form of authentication or authorisation. Neither `session_start()` nor the usual session validation code is present. The scripts immediately process the incoming HTTP request and execute SQL statements.
Example from `admin/deleteform.php` (lines 3–6):
```php
include ('../dbcon.php');
$id = $_REQUEST['sid'];
$qry = "DELETE FROM `student` WHERE `id`= '$id' ";
```
Because these endpoints are accessible to anyone who knows the path, an unauthenticated attacker can arbitrarily delete or modify student records, causing severe data integrity and availability issues. |
|---|
| La source | ⚠️ https://github.com/a4m4/Student-Management-System--PHP-/issues/3 |
|---|
| Utilisateur | oxygen (UID 97921) |
|---|
| Soumission | 11/05/2026 06:10 (il y a 1 mois) |
|---|
| Modérer | 31/05/2026 16:16 (20 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 367551 [a4m4 Student-Management-System admin/deleteform.php sid élévation de privilèges] |
|---|
| Points | 20 |
|---|