| शीर्षक | code-projects GYM MANAGEMENT SYSTEM 1 SQL Injection |
|---|
| विवरण | Although this Gym Management System in PHP is a simple mini project designed to manage members, trainers, and exercises from both admin and user panels, the current
implementation introduces multiple security risks.
Because several features rely on direct user-controlled input (especially in admin management operations), the application is vulnerable to critical issues such as SQL
Injection, weak authentication/session handling, and missing request protection.
As a result, an attacker may be able to access or manipulate sensitive gym records without proper authorization. These weaknesses indicate that the project lacks secure
input handling and defensive controls in key business modules.
|
|---|
| स्रोत | ⚠️ https://fox-byte.yuque.com/org-wiki-fox-byte-ig3xms/rdgsp5/yg012bnp1xorwq0p |
|---|
| उपयोगकर्ता | Red0 (UID 96252) |
|---|
| सबमिशन | 15/04/2026 09:54 AM (2 महीनों पहले) |
|---|
| संयम | 30/04/2026 09:04 PM (15 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 360361 [code-projects Gym Management System 1.0 edit_exercises.php edit_exercise SQL इंजेक्शन] |
|---|
| अंक | 20 |
|---|