| 제목 | Best employee management system in php print1.php V1.0 SQL Injection |
|---|
| 설명 | hr_softadmin/print1.php file line 104 php method gets user input from the GET element. The value of this element is then passed to the code without proper sanitisation or validation, and is ultimately used in the php method on line 108 of the hr_softadminprint1.php file for database queries. This can lead to SQL injection attacks.
baiyunjian has discovered that due to insufficient protection of the "id" parameter in the "admin/print1.php" file, "Best employee management system in php" there is a serious security vulnerability in the This vulnerability may be used to inject malicious SQL queries, resulting in unauthorized access and extraction of sensitive information from the database. |
|---|
| 원천 | ⚠️ https://github.com/Hefei-Coffee/cve/issues/2 |
|---|
| 사용자 | baiyunjian (UID 82187) |
|---|
| 제출 | 2025. 03. 04. AM 10:35 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 03. 06. PM 03:21 (2 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 298796 [SourceCodester Best Employee Management System 1.0 /admin/print1.php 아이디 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|