제출 #733344: PHPGurukul Online Course Registration System ≤ 3.1 SQL Injection정보

제목PHPGurukul Online Course Registration System ≤ 3.1 SQL Injection
설명A critical SQL Injection vulnerability was discovered in PHPGurukul Online Course Registration System v3.1. The vulnerability exists in the file /enroll.php, where multiple POST parameters (studentregno, Pincode, session, department, level, course, sem) are directly concatenated into an INSERT SQL query without any input validation or sanitization. An authenticated attacker can inject malicious SQL commands to extract sensitive data or compromise the database.
원천⚠️ https://note-hxlab.wetolink.com/share/qX132pk8Wofk
사용자
 angelkate (UID 94159)
제출2026. 01. 07. AM 07:21 (5 개월 ago)
모더레이션2026. 01. 09. AM 10:42 (2 days later)
상태수락
VulDB 항목340255 [PHPGurukul Online Course Registration System 까지 3.1 /enroll.php SQL 주입]
포인트들20

이전개요다음

Interested in the pricing of exploits?

See the underground prices here!