| タイトル | Code-projects Inventory Management System 1.0 SQL Injection |
|---|
| 説明 | This code is used to query whether the current account exists in the database. At the same time, the username and password are not filtered in any way, nor are they normalized through function conversion, which allows any password to successfully log in to the account. You only need to know the account number to log in to the user and obtain the user's permissions. |
|---|
| ソース | ⚠️ https://github.com/MyMySSS/CVE123/blob/main/cve/cve.md |
|---|
| ユーザー | MyMy (UID 96642) |
|---|
| 送信 | 2026年04月07日 15:34 (20 日 ago) |
|---|
| モデレーション | 2026年04月26日 09:44 (19 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 359645 [code-projects Inventory Management System 1.0 Login ユーザー名 SQLインジェクション] |
|---|
| ポイント | 19 |
|---|