| 제목 | https://www.sourcecodester.com/php/15373 online-banking-management-system 1.0 SQL Injection |
|---|
| 설명 | No authentication is required. Directly access the file bank/transfer.php, capture the data packet, and modify it to be sent via the POST method. The POST request should carry the parameter "email",”userLogin”,”password”. You can use the SQLMAP tool to verify the vulnerability; the parameter "email" has a SQL injection vulnerability, through which sensitive database information can be obtained.
|
|---|
| 원천 | ⚠️ http://127.0.0.1/bank/transfer.php |
|---|
| 사용자 | firewall (UID 88901) |
|---|
| 제출 | 2025. 08. 11. PM 12:19 (10 개월 ago) |
|---|
| 모더레이션 | 2025. 08. 14. AM 09:04 (3 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 320086 [SourceCodester Online Bank Management System 까지 1.0 /bank/transfer.php email SQL 주입] |
|---|
| 포인트들 | 20 |
|---|