Submeter #768046: SourceCodester Inventory System 1.0 SQL Injectioninformação

TítuloSourceCodester Inventory System 1.0 SQL Injection
DescriçãoA SQL injection vulnerability exists in SourceCodester Inventory System 1.0. The vulnerability is found in the search functionality of the file dashboard.php. The manipulation of the POST parameter 'searchtxt' leads to boolean-based or time-based blind SQL injection. An authenticated attacker can exploit this to infer and exfiltrate database content.
Fonte⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/SQLi-Dashboard-searchtxt.md
Utilizador
 Anonymous User
Submissão26/02/2026 07h21 (há 1 mês)
Moderação08/03/2026 08h24 (10 days later)
EstadoAceite
Entrada VulDB349758 [SourceCodester Sales and Inventory System 1.0 Search dashboard.php searchtxt Injeção SQL]
Pontos19

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!