| Titolo | PHPGurukul Daily Expense Tracker System 1.1 SQL Injection |
|---|
| Descrizione | A SQL injection vulnerability was identified within the "/expense-yearwise-reports-detailed.php" file of the "Daily Expense Tracker System" project. The root cause lies in the fact that attackers can inject malicious code via the parameter "todate". |
|---|
| Fonte | ⚠️ https://github.com/f1rstb100d/myCVE/issues/25 |
|---|
| Utente | Anonymous User |
|---|
| Sottomissione | 29/05/2025 18:54 (1 Anno fa) |
|---|
| Moderazione | 30/05/2025 12:50 (18 hours later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 310661 [PHPGurukul Daily Expense Tracker System 1.1 expense-yearwise-reports-detailed.php todate iniezione SQL] |
|---|
| Punti | 16 |
|---|