제출 #546164: PHPGurukul Restaurant Table Booking System 1.0 SQL Injection정보

제목PHPGurukul Restaurant Table Booking System 1.0 SQL Injection
설명While conducting a security review of "RTBS Project PH", I discovered a critical SQL injection vulnerability in the "/admin/add-subadmin.php" file. The vulnerability stems from insufficient user input validation of the "fullname" parameter, allowing an attacker to inject malicious SQL queries. As a result, attackers can gain unauthorized access to the database, modify or delete data, and access sensitive information. Immediate remedial action is required to ensure system security and protect data integrity.
원천⚠️ https://github.com/Camllia2024/mycve/issues/1
사용자
 Camllia218 (UID 83396)
제출2025. 03. 30. AM 10:43 (1 년도 ago)
모더레이션2025. 04. 03. PM 03:25 (4 days later)
상태수락
VulDB 항목303170 [PHPGurukul Restaurant Table Booking System 1.0 /admin/add-subadmin.php fullname SQL 주입]
포인트들20

이전개요다음

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!