| Название | SQL injection vulnerability in Student Attendance Management System |
|---|
| Описание | SQL injection vulnerability in Student Attendance Management System。input [email protected] / Password@123 Log in to the background. Then modify the information in createClass Php, the ID is assigned to the variable $ID, and then inserted into the database for query, and the query information is returned, However, there is no filtering,causing a SQL injection vulnerability |
|---|
| Источник | ⚠️ https://github.com/rickxy/Student-Attendance-Management-System/issues/2 |
|---|
| Пользователь | ace. (UID 34853) |
|---|
| Представление | 17.11.2022 07:54 (4 лет назад) |
|---|
| Модерация | 17.11.2022 16:10 (8 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 213845 [Student Attendance Management System /Admin/createClass.php ИД SQL-инъекция] |
|---|
| Баллы | 20 |
|---|