| शीर्षक | SourceCodester Online Examination System Project V1.0 SQL Injection |
|---|
| विवरण | During the security review of the "Online Polling System" project, polaris0x1 discovered a significant vulnerability in the save.php file. The vote parameter lacks proper sanitization and validation, allowing attackers to inject malicious SQL queries and gain unauthorized database access. This can result in the modification of voting data and potential exposure of sensitive information. Immediate measures are needed to address this flaw and ensure data security and fairness in the voting process. |
|---|
| स्रोत | ⚠️ https://github.com/polaris0x1/CVE/issues/3 |
|---|
| उपयोगकर्ता | polaris0x1 (UID 67906) |
|---|
| सबमिशन | 18/05/2024 07:22 PM (2 साल पहले) |
|---|
| संयम | 19/05/2024 01:28 PM (18 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 265196 [SourceCodester Online Examination System 1.0 save.php vote SQL इंजेक्शन] |
|---|
| अंक | 20 |
|---|