| 제목 | SourceCodester Best online news portal project in php free download V1.0 SQL Injection |
|---|
| 설명 | The PHP method in line 10 of the /admin/index.php file retrieves user input from the POST element. Then, the value of this element will be passed to the code without proper purification or validation, and ultimately the database query in the PHP method on line 14. This may lead to SQL injection attacks.
xuanluansec has discovered a serious issue in "Best online news portal project in php free download" that can allow attackers to obtain large amounts of database content through SQL injection attacks. |
|---|
| 원천 | ⚠️ https://github.com/CveSecLook/cve/issues/45 |
|---|
| 사용자 | xuanluansec (UID 68581) |
|---|
| 제출 | 2024. 06. 13. PM 01:23 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 06. 13. PM 08:12 (7 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 268461 [SourceCodester Best Online News Portal 1.0 /admin/index.php 사용자 이름 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|