Invia #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectioninformazioni

Titolosourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
DescrizioneEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
Fonte⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
Utente
 rtsjx (UID 72133)
Sottomissione21/07/2024 04:28 (2 anni fa)
Moderazione21/07/2024 17:17 (13 hours later)
StatoAccettato
Voce VulDB272121 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 manage_employee ID iniezione SQL]
Punti20

Might our Artificial Intelligence support you?

Check our Alexa App!