| Название | https://www.sourcecodester.com Online Courseware 1.0 SQL Injection |
|---|
| Описание | A critical vulnerability has been discovered in the Online Courseware. This affects the admin/activatestud.php file. Operations on the parameter selector[] result in sql injection. Attackers could use it to access, delete or alter sensitive data without authorization: customer information, personal data, trade secrets, intellectual property, etc. |
|---|
| Источник | ⚠️ https://github.com/thisissuperann/Vul/blob/Online-Courseware/Online-Courseware-07.md |
|---|
| Пользователь | liuann (UID 67227) |
|---|
| Представление | 06.04.2024 12:04 (2 лет назад) |
|---|
| Модерация | 06.04.2024 13:02 (58 minutes later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 259594 [SourceCodester Online Courseware 1.0 admin/activatestud.php selector SQL-инъекция] |
|---|
| Баллы | 19 |
|---|