| 제목 | Sticky Notes App SQL injection |
|---|
| 설명 | SQL injection vulnerability exists in ‘note’ parameter of ‘endpoint/delete-note.php’ file of Sticky Notes App. Important user data or system data may be leaked and system
security may be compromised. When visit ‘delete-note.php’ and page parameter is ’note’ can do sql injection. ‘note’ variables are dynamically concatenated even though the code is precompiled. Sourcecodester link: https://www.sourcecodester.com/php/16928/sticky-notes-app-using-php-source-code.html |
|---|
| 원천 | ⚠️ https://github.com/Yp1oneer/cve_hub/blob/main/Sticky%20Notes%20App/SQL%20Injection-1.pdf |
|---|
| 사용자 | Yp1oneer (UID 45921) |
|---|
| 제출 | 2023. 10. 23. AM 09:41 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 10. 26. AM 09:15 (3 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 243598 [SourceCodester Sticky Notes App 1.0 endpoint/delete-note.php note SQL 주입] |
|---|
| 포인트들 | 20 |
|---|