| 제목 | School-Management-System---PHP-MySQL 1.0.1 SQL Injection |
|---|
| 설명 | An sqlinjection has been discovered within version 1.0.1 of School-Management-System---PHP-MySQL in the “?aid” parameter in (/attendancelist.php?aid=*). This issue arises due the lack of input sanitization.
vendor's github: https://github.com/lahirudanushka/School-Management-System---PHP-MySQL |
|---|
| 원천 | ⚠️ https://powerful-bulb-c36.notion.site/sql-injection-1-6b3c66351180485ea764561a47239907 |
|---|
| 사용자 | louay khammassi (UID 67114) |
|---|
| 제출 | 2024. 06. 22. PM 07:04 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 06. 23. PM 08:59 (1 day later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 269487 [lahirudanushka School Management System 1.0.0/1.0.1 Attendance Report Page /attendancelist.php aid SQL 주입] |
|---|
| 포인트들 | 14 |
|---|