| タイトル | SourceCodester Employee Management System 1.0 Sql Injection |
|---|
| 説明 | A critical SQL injection vulnerability exists in the SourceCodester Employee Management System's psubmit.php script, allowing attackers to inject malicious SQL code via the pid parameter. Exploiting this flaw could lead to unauthorized access to sensitive data or modification of database records. Remediation involves implementing input validation and parameterized queries to prevent injection attacks, alongside regular security assessments to maintain robust protection. |
|---|
| ソース | ⚠️ https://github.com/skid-nochizplz/skid-nochizplz/blob/main/TrashBin/CVE/SOURCECODESTER%20EMPLOYEE%20MANAGEMENT%20SYSTEM/Employee%20Project%20SQL%20Injection%20Update.md |
|---|
| ユーザー | nochizplz (UID 64302) |
|---|
| 送信 | 2024年02月24日 11:49 (2 年 ago) |
|---|
| モデレーション | 2024年02月25日 19:30 (1 day later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 254724 [SourceCodester Employee Management System 1.0 /psubmit.php pid SQLインジェクション] |
|---|
| ポイント | 20 |
|---|