| Título | SourceCodester Resort Reservation System 1.0 has a SQL Injection vulnerability in view_fee.php |
|---|
| Descrição | SourceCodester Resort Reservation System 1.0 has a SQL Injection vulnerability in view_fee.php. Affected is file view_fee.php, the manipulation of the argument id leads to SQL injection after users logged in. Remote attackers can exploit SQL union-based injection to retrieve all data from the database. |
|---|
| Fonte | ⚠️ https://github.com/Yesec/Resort-Reservation-System/blob/main/SQL%20Injection%20in%20view_fee.php/vuln.md |
|---|
| Utilizador | YeSec (UID 50956) |
|---|
| Submissão | 06/08/2023 10h37 (há 3 anos) |
|---|
| Moderação | 06/08/2023 15h49 (5 hours later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 236236 [SourceCodester Resort Reservation System 1.0 view_fee.php ID Injeção SQL] |
|---|
| Pontos | 18 |
|---|