जमा करें #632036: phpgurukul Employee Record Management System 1.3 SQL Injectionजानकारी

शीर्षक	phpgurukul Employee Record Management System 1.3 SQL Injection
विवरण	An authenticated SQL injection vulnerability exists in the Employee Record Management System (ERMS) within admin/adminprofile.php. The AdminName parameter is directly concatenated into an SQL query without input sanitization or prepared statements. An authenticated attacker can exploit this to execute arbitrary SQL commands, potentially extracting or modifying database contents.
स्रोत	⚠️ https://github.com/cryptokhush/Employee-Record-Management-System/blob/main/README.md
उपयोगकर्ता	devcypher (UID 88930)
सबमिशन	11/08/2025 06:51 PM (10 महीनों पहले)
संयम	16/08/2025 08:01 AM (5 days later)
स्थिति	प्रतिलिपि
VulDB प्रविष्टि	311581 [PHPGurukul Employee Record Management System 1.3 /admin/adminprofile.php AdminName SQL इंजेक्शन]
अंक	0

Do you know our Splunk app?

Download it now for free!