| 제목 | code-projects Simple Flight Ticket Booking System 1.0 SQL Injection |
|---|
| 설명 | A SQL Injection vulnerability has been identified in Code-Projects Simple Flight Ticket Booking System v1.0 in the checkUser.php file.
The vulnerability exists in the username POST parameter, which is directly included in SQL queries without proper sanitization or use of prepared statements.
An attacker can manipulate the input to alter the structure of SQL queries executed by the application. |
|---|
| 원천 | ⚠️ https://github.com/K1venn/cves/issues/1 |
|---|
| 사용자 | k1ven (UID 98420) |
|---|
| 제출 | 2026. 05. 21. AM 01:26 (20 날 ago) |
|---|
| 모더레이션 | 2026. 06. 07. PM 12:09 (17 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 369108 [code-projects Simple Flight Ticket Booking System 1.0 POST Parameter checkUser.php 사용자 이름 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|