Submeter #848002: code-projects.org Smart Parking System In PHP 1.0 SQL Injectioninformação

Títulocode-projects.org Smart Parking System In PHP 1.0 SQL Injection
DescriçãoWhile testing open-source PHP applications for security vulnerabilities, I identified a Critical SQL Injection vulnerability in the Smart Parking System In PHP available on code-projects.org. The vulnerability allows unauthenticated or authenticated attackers to perform UNION-based and Time-based Blind SQL Injection, leading to full database enumeration, credential disclosure, and Arbitrary File Read via excessive database privileges.
Fonte⚠️ https://medium.com/@avdzav10/sql-injection-leading-to-arbitrary-file-read-in-smart-parking-system-php-2cd5b084f9e1
Utilizador
 anubhav106 (UID 98769)
Submissão04/06/2026 20h02 (há 30 dias)
Moderação04/07/2026 10h56 (30 days later)
EstadoAceite
Entrada VulDB376317 [code-projects Smart Parking System 1.0 /parkings/parkings.php street/city/status Injeção SQL]
Pontos20

Interested in the pricing of exploits?

See the underground prices here!