Submit #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectioninformação

Titlesourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
DescriptionEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
Source⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
User
 rtsjx (ID 72133)
Submission21/07/2024 04h28 (3 months ago)
Moderation21/07/2024 17h17 (13 hours later)
StatusAceite
VulDB Entry272121
Points20

Do you know our Splunk app?

Download it now for free!