| 제목 | SourceCodester Online Student File Management System 1.0 SQL Injection |
|---|
| 설명 | During the security review of the "Online Student File Management System", I discovered a critical SQL injection vulnerability within the file inclusion chain: /index.php → login.php → login_query.php. Specifically, when users access index.php, it includes login.php to display the login form, and login.php subsequently includes login_query.php to handle the login logic. In line 7 of login_query.php, the stud_no parameter is directly inserted into the SQL query: "SELECT * FROM student WHERE stud_no = '$stud_no' && password = '$password'" without any input validation or parameterized query implementation. This insecure coding practice allows attackers to inject malicious SQL code through the stud_no parameter, potentially gaining unauthorized database access, modifying or deleting data, and accessing sensitive information. Immediate remedial measures are required to ensure system security and protect data integrity.
|
|---|
| 원천 | ⚠️ https://github.com/ganzhi-qcy/cve/issues/25 |
|---|
| 사용자 | quchunyi1 (UID 86520) |
|---|
| 제출 | 2025. 09. 05. AM 10:02 (10 개월 ago) |
|---|
| 모더레이션 | 2025. 09. 15. PM 04:01 (10 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 323914 [SourceCodester Online Student File Management System 1.0 /index.php stud_no SQL 주입] |
|---|
| 포인트들 | 20 |
|---|