Submeter #580167: PHPGurukul CREDIT CARD Application Management System Using PHP and MySQL 1.0 SQL Injectioninformação

TítuloPHPGurukul CREDIT CARD Application Management System Using PHP and MySQL 1.0 SQL Injection
DescriçãoA Time-Based Blind SQL Injection vulnerability was discovered in the Credit Card Application Management System v1.0 by PHPGurukul. The issue affects the username parameter in the login endpoint (/ccams/admin/index.php). Using crafted payloads, an unauthenticated attacker can inject SQL commands and extract sensitive data such as admin credentials, email addresses, and phone numbers from the backend MySQL database (ccamsdb). The vulnerability allows complete compromise of the application’s authentication mechanism.
Fonte⚠️ https://github.com/GIRISH05/Credit-card-application-management-system/blob/main/SQL-Injection.md
Utilizador
 girishbo (UID 85185)
Submissão18/05/2025 12h24 (há 1 Ano)
Moderação18/05/2025 17h34 (5 hours later)
EstadoAceite
Entrada VulDB309504 [PHPGurukul Credit Card Application Management System 1.0 /admin/index.php Nome de utilizador Injeção SQL]
Pontos20

Might our Artificial Intelligence support you?

Check our Alexa App!