Submeter #515429: PHPGurukul Human Metapneumovirus Testing Management System 1.0 SQL Injectioninformação

TítuloPHPGurukul Human Metapneumovirus Testing Management System 1.0 SQL Injection
DescriçãoWhen updating user information, the **mobilenumber** parameter in `profile.php` is vulnerable to SQL injection attacks. This vulnerability stems from insufficient validation of user input for the "mobnumber" parameter, allowing attackers to inject time-based malicious SQL queries.
Fonte⚠️ https://github.com/SECWG/cve/issues/7
Utilizador
 WenGui (UID 82184)
Submissão06/03/2025 15h35 (há 1 Ano)
Moderação16/03/2025 14h19 (10 days later)
EstadoAceite
Entrada VulDB299873 [PHPGurukul Human Metapneumovirus Testing Management System 1.0 /profile.php aid/adminname/mobilenumber/email Injeção SQL]
Pontos17

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!