| Título | SQL injection vulnerability in Student Attendance Management System |
|---|
| Descrição | SQL injection vulnerability in Student Attendance Management System。input [email protected] / Password@123 Log in to the background. Then modify the information in createClass Php, the ID is assigned to the variable $ID, and then inserted into the database for query, and the query information is returned, However, there is no filtering,causing a SQL injection vulnerability |
|---|
| Fonte | ⚠️ https://github.com/rickxy/Student-Attendance-Management-System/issues/2 |
|---|
| Utilizador | ace. (UID 34853) |
|---|
| Submissão | 17/11/2022 07h54 (há 4 anos) |
|---|
| Moderação | 17/11/2022 16h10 (8 hours later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 213845 [Student Attendance Management System /Admin/createClass.php ID Injeção SQL] |
|---|
| Pontos | 20 |
|---|