| 제목 | https://www.sourcecodester.com/ Internship Portal Management System 1.0 SQL Injection |
|---|
| 설명 | A critical vulnerability has been discovered in the Internship Portal Management System. This affects the admin/edit_admin_query.php file. Operations on the parameter username/password/name/admin_id result in sql injection. The main reason is that the program does not judge and process the legitimacy of the user input data, resulting in attackers can add additional SQL statements to the predefined SQL statements in the Web application, and achieve illegal operations without the knowledge of the administrator, so as to deceive the database server to carry out unauthorized arbitrary queries. To further obtain data information. |
|---|
| 원천 | ⚠️ https://github.com/thisissuperann/Vul/blob/main/Internship-Portal-Management-System-05 |
|---|
| 사용자 | liuann (UID 67227) |
|---|
| 제출 | 2024. 04. 03. AM 03:34 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 04. 03. AM 07:17 (4 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 259104 [SourceCodester Internship Portal Management System 1.0 edit_admin_query.php username/password/name/admin_id SQL 주입] |
|---|
| 포인트들 | 20 |
|---|