| Title | Source Codester Best church management software 1.1 SQL Injection |
|---|
| Description | A vulnerability has been found in SourceCodester Best church management software 1.1 and classified as critical. SourceCodester Best church management software 1.1 has a SQL Injection vulnerability in /admin/app/role_crud.php. Affected is file /admin/app/role_crud.php,The manipulation of the argument `id` leads to SQL inject. Remote attackers can leverage time-based blind SQL injection to extract data from the database. |
|---|
| Source | ⚠️ https://github.com/Yesec/Best-church-management-software/blob/main/role_crud.php_SQLi.md |
|---|
| User | YeSec (UID 50956) |
|---|
| Submission | 2025年02月08日 10:47 (5 月 ago) |
|---|
| Moderation | 2025年02月10日 17:04 (2 days later) |
|---|
| Status | 承諾済み |
|---|
| VulDB Entry | 295107 [SourceCodester Best Church Management Software 1.1 /admin/app/role_crud.php 識別子 SQLインジェクション] |
|---|
| Points | 20 |
|---|