| 제목 | Bank Locker Management System v1.0 Retrieve Password SQL Injection |
|---|
| 설명 | A vulnerability classified as severe has been discovered in the Bank Locker Management System. The vulnerability appears in the password recovery section of the password recovery. php file. The operation on parameters username and mobileno will result in SQL injection, which can control SQL queries and cause database information leakage. This will pose a serious threat to system security and sensitive data within the system. Even disrupted the normal use of the system! |
|---|
| 원천 | ⚠️ https://github.com/vsdwef/Bank-locker-Managament-System/blob/main/password-recovery.php_SQL_English.pdf |
|---|
| 사용자 | dbapp.jy (UID 44542) |
|---|
| 제출 | 2023. 04. 08. PM 08:49 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 04. 09. AM 09:42 (13 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 225360 [PHPGurukul Bank Locker Management System 1.0 Password Reset recovery.php uname/mobile SQL 주입] |
|---|
| 포인트들 | 20 |
|---|