| शीर्षक | SQL Injection in Delete tasks in Task Reminder System 1.0 |
|---|
| विवरण | It was possible to locate at least one point vulnerable to sql injection, more specifically in the "Master.php" file, so that an attacker Administrator or Staff of the application can carry out the exploitation.
PoC Video: https://youtu.be/o46oHLvY2-E
References:
https://portswigger.net/web-security/sql-injection#:~:text=SQL%20injection%20(SQLi)%20is%20a,not%20normally%20able%20to%20retrieve.
https://owasp.org/www-community/attacks/SQL_Injection |
|---|
| स्रोत | ⚠️ https://www.sourcecodester.com/php/16451/task-reminder-system-php-and-mysql-source-code-free-download.html |
|---|
| उपयोगकर्ता | Anonymous User |
|---|
| सबमिशन | 18/04/2023 04:49 AM (3 साल पहले) |
|---|
| संयम | 18/04/2023 12:50 PM (8 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 226271 [SourceCodester Task Reminder System 1.0 Master.php पहचान SQL इंजेक्शन] |
|---|
| अंक | 20 |
|---|