| शीर्षक | Student Study Center Desk Management System Of SQL injection bypassing login authentication in the id parameter of manage_student.php |
|---|
| विवरण | SQL injection vulnerability found in Student Study Center Desk Management System. Due to incorrect identification by the system,this will cause access to any PHP files in the background when not logged in.Accessing manage_student.php through the 'page' parameter will enable the execution of SQL statements. However, due to the lack of verification of the 'id' parameter in the manage_student.php file, it will result in the creation of SQL injection vulnerabilities. |
|---|
| स्रोत | ⚠️ https://github.com/xzz0787/vul/blob/main/README.pdf |
|---|
| उपयोगकर्ता | xzz0787 (UID 45199) |
|---|
| सबमिशन | 18/04/2023 11:17 AM (3 साल पहले) |
|---|
| संयम | 18/04/2023 12:55 PM (2 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 226273 [SourceCodester Student Study Center Desk Management System 1.0 index.php page अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|