| 제목 | https://www.sourcecodester.com/users/walterjnr1 https://www.sourcecodester.com/php/16999/employee-management-system.html v1.0 Authenticated SQL Injection in edit_profile.php |
|---|
| 설명 | An authenticated SQL injection vulnerability was found in the function called "edit_profile.php" during some tests carried out on the Employee Management System application.
With this vulnerability, any authenticated user can make a dump of all databases, being able to access password, email, telephone, etc. |
|---|
| 원천 | ⚠️ https://www.youtube.com/watch?v=1yesMwvWcL4 |
|---|
| 사용자 | mtzsec (UID 52162) |
|---|
| 제출 | 2024. 01. 24. AM 03:33 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 01. 29. AM 08:15 (5 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 252276 [SourceCodester Employee Management System 1.0 edit_profile.php txtfullname SQL 주입] |
|---|
| 포인트들 | 15 |
|---|