제출 #607526: Pharmacy-management-system commit a2efc84 SQL Injection정보

제목Pharmacy-management-system commit a2efc84 SQL Injection
설명The parameters `med_name`, `med_cat`, and `ex_date` in quantity_upd.php are not sanitized and are directly used in a database query via `mysqli_query`, resulting in a time-based blind SQL injection vulnerability
원천⚠️ https://github.com/horytick/CVE/blob/main/SQL%20Injection%20Vulnerability%20in%20Pharmacy%20Management%20System.md
사용자
 moss_mo (UID 47882)
제출2025. 07. 01. PM 08:13 (10 개월 ago)
모더레이션2025. 07. 07. AM 10:53 (6 days later)
상태수락
VulDB 항목315138 [krishna9772 Pharmacy Management System 까지 a2efc8442931ec9308f3b4cf4778e5701153f4e5 quantity_upd.php med_name/med_cat/ex_date SQL 주입]
포인트들17

이전개요다음

Want to know what is going to be exploited?

We predict KEV entries!