| 제목 | SourceCodester Best House Rental Management System 1.0 SQL Injection |
|---|
| 설명 | After receiving the id parameter passed in through the get method in the edit-cate.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information. |
|---|
| 원천 | ⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester_House_Rental_Management_System_Sql_Inject-4.md |
|---|
| 사용자 | rocker (UID 62454) |
|---|
| 제출 | 2024. 05. 23. PM 04:08 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 05. 25. AM 08:11 (2 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 266278 [SourceCodester Best House Rental Management System 까지 1.0 edit-cate.php 아이디 SQL 주입] |
|---|
| 포인트들 | 17 |
|---|