Отправить #378101: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injectionИнформация

Названиеsourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection
ОписаниеEmployee and Visitor Gate Pass Logging System 1.0 is vulnerable to unrestricted SQL injection attacks via /employee_gatepass/admin/?page=employee/manage_employee, the controllable parameter is: id. This function brings the id parameter into the SQL statement for execution without any restrictions. A malicious attacker could exploit this vulnerability to obtain sensitive information in the server database.
Источник⚠️ https://github.com/rtsjx-cve/cve/blob/main/sql.md
Пользователь
 rtsjx (UID 72133)
Представление21.07.2024 04:28 (2 лет назад)
Модерация21.07.2024 17:17 (13 hours later)
Статуспринято
Запись VulDB272121 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 manage_employee ИД SQL-инъекция]
Баллы20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!