जमा करें #778588: GitHub advocate-office-management-system V 1.0 SQL Injectionजानकारी

शीर्षकGitHub advocate-office-management-system V 1.0 SQL Injection
विवरणThe id parameter under the control/activate_reg.php file of the advertisement office management system is controllable by the user. This parameter does not carry out any filtering. An attacker can execute malicious sql injection by constructing malicious sql statements, thus creating an sql injection vulnerability. Through this vulnerability, sensitive information can be obtained, or malicious files can be written, and finally server permissions can be obtained
स्रोत⚠️ https://github.com/zhangbeihai-1/cve/issues/1
उपयोगकर्ता
 dead_end (UID 96372)
सबमिशन12/03/2026 11:03 AM (4 महीनों पहले)
संयम27/03/2026 05:07 PM (15 days later)
स्थितिप्रतिलिपि
VulDB प्रविष्टि300585 [SourceCodester Kortex Lite Advocate Office Management System 1.0 activate_reg.php पहचान SQL इंजेक्शन]
अंक0

Do you know our Splunk app?

Download it now for free!