| Titolo | https://www.sourcecodester.com Online Courseware 1.0 SQL Injection |
|---|
| Descrizione | A critical vulnerability has been discovered in the Online Courseware. This affects the admin/saveedit.php file. Operations on the parameter id result in sql injection. Attackers could use it to access, delete or alter sensitive data without authorization: customer information, personal data, trade secrets, intellectual property, etc. |
|---|
| Fonte | ⚠️ https://github.com/thisissuperann/Vul/blob/Online-Courseware/Online-Courseware-05.md |
|---|
| Utente | liuann (UID 67227) |
|---|
| Sottomissione | 06/04/2024 12:02 (2 anni fa) |
|---|
| Moderazione | 06/04/2024 13:02 (60 minutes later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 259592 [SourceCodester Online Courseware 1.0 admin/saveedit.php ID iniezione SQL] |
|---|
| Punti | 18 |
|---|