| 제목 | code-projects POS(point of sales) and Inventory System 1.0 SQL Injection |
|---|
| 설명 | A malicious attacker can exploit this vulnerability by manipulating the username parameter. By injecting malicious SQL code into the parameter, the attacker could gain unauthorized access to sensitive information stored in the server's database. This could lead to the exposure of confidential data, including but not limited to user credentials, personal information, and other critical data. |
|---|
| 원천 | ⚠️ https://gist.github.com/Masamuneee/645d20dd1dc6389dd47a7fae0bb2cefa |
|---|
| 사용자 | masamune (UID 79684) |
|---|
| 제출 | 2025. 01. 02. AM 11:33 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 01. 03. AM 11:46 (1 day later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 290138 [code-projects Point of Sales and Inventory Management System 1.0 /user/update_account.php 사용자 이름 SQL 주입] |
|---|
| 포인트들 | 19 |
|---|