| タイトル | Advocate office management system free download delete_register.php v1..0 SQL Injection |
|---|
| 説明 | The 4 line of the delete_register.php file uses the PHP method to retrieve user input from the GET element. Then, the value of this element is passed to the code without proper cleaning or validation, and ultimately used for database queries. This may lead to SQL injection attacks.
baiyunjian has discovered that due to insufficient protection of the "case_register_id" parameter in the "delete_register.php" file, "Advocate office management system free download" there is a serious security vulnerability in the This vulnerability may be used to inject malicious SQL queries, resulting in unauthorized access and extraction of sensitive information from the database. |
|---|
| ソース | ⚠️ https://github.com/Hefei-Coffee/cve/issues/13 |
|---|
| ユーザー | bingbingliang (UID 82659) |
|---|
| 送信 | 2025年03月11日 08:39 (1 年 ago) |
|---|
| モデレーション | 2025年03月21日 14:18 (10 days later) |
|---|
| ステータス | 重複 |
|---|
| VulDBエントリ | 274061 [SourceCodester Kortex Lite Advocate Office Management System 1.0 delete_register.php case_register_id SQLインジェクション] |
|---|
| ポイント | 0 |
|---|