| タイトル | Sourcecodester Contact Manager App has SQL injection vulnerability. |
|---|
| 説明 | SQL Injection is a code injection technique that attackers use to exploit vulnerabilities in a web application's database query. The attacker can inject malicious SQL statements into input fields for execution, which can lead to unauthorized viewing of data, data manipulation, and other destructive outcomes.
In the Sourcecodester Contact Manager App, attackers can exploit a SQL injection vulnerability to delete the entire contact table.
Please refer to the Exploit link for vulnerability proof. |
|---|
| ソース | ⚠️ https://skypoc.wordpress.com/2023/09/05/vuln1/ |
|---|
| ユーザー | gikaku (UID 53862) |
|---|
| 送信 | 2023年09月06日 01:47 (3 年 ago) |
|---|
| モデレーション | 2023年09月09日 10:16 (3 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 239357 [SourceCodester Contact Manager App 1.0 add.php contact/contactName SQLインジェクション] |
|---|
| ポイント | 20 |
|---|