Submeter #115511: SQL Injection in Delete tasks in Task Reminder System 1.0 informação

TítuloSQL Injection in Delete tasks in Task Reminder System 1.0
DescriçãoIt was possible to locate at least one point vulnerable to sql injection, more specifically in the "Master.php" file, so that an attacker Administrator or Staff of the application can carry out the exploitation. PoC Video: https://youtu.be/o46oHLvY2-E References: https://portswigger.net/web-security/sql-injection#:~:text=SQL%20injection%20(SQLi)%20is%20a,not%20normally%20able%20to%20retrieve. https://owasp.org/www-community/attacks/SQL_Injection
Fonte⚠️ https://www.sourcecodester.com/php/16451/task-reminder-system-php-and-mysql-source-code-free-download.html
Utilizador
 Anonymous User
Submissão18/04/2023 04h49 (há 3 anos)
Moderação18/04/2023 12h50 (8 hours later)
EstadoAceite
Entrada VulDB226271 [SourceCodester Task Reminder System 1.0 Master.php ID Injeção SQL]
Pontos20

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!