| शीर्षक | SQL injection exists in the PHP CMS "Free and Open Source inventory management system" |
|---|
| विवरण | A serious time-based blind SQL injection vulnerability has been discovered in the "Free and Open Source inventory management system" CMS.
The vulnerability manifests at the URL /index.php?page=member.
Exploitation occurs through the manipulation of the 'columns[0][data]' parameter.
This vulnerability affects the current and only version of the CMS that has been released. |
|---|
| स्रोत | ⚠️ https://github.com/Jacky-Y/vuls/blob/main/README.md |
|---|
| उपयोगकर्ता | JackYu (UID 52658) |
|---|
| सबमिशन | 14/08/2023 04:19 PM (3 साल पहले) |
|---|
| संयम | 20/08/2023 09:15 AM (6 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 237570 [SourceCodester Free and Open Source Inventory Management System 1.0 /index.php?page=member columns[0][data] SQL इंजेक्शन] |
|---|
| अंक | 19 |
|---|