| Title | Agro-School Management System btn_functions.php has Sqlinjection |
|---|
| Description | A SQL injection vulnerability exists in the agricultural school management system btn_functions.php. The basic introduction of the vulnerability is that SQL injection means that the web application does not strictly judge or filter the validity of user input data. An attacker can add additional SQL statements to the end of a predefined query statement in a web application, and perform illegal operations without the knowledge of the administrator. In this way, the database server can be tricked into performing any unauthorized query and obtaining the corresponding data information.
Source Download:https://code-projects.org/agro-school-management-system-in-php-with-source-code/ |
|---|
| Source | ⚠️ https://github.com/hotencode/CveHub/blob/main/Agro-School%20Management%20System%20btn_functions.php%20has%20Sqlinjection.pdf |
|---|
| User | ZhangWang (UID 47877) |
|---|
| Submission | 06/04/2023 09:18 (3 years ago) |
|---|
| Moderation | 06/04/2023 10:38 (1 hour later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 230670 [code-projects Agro-School Management System 1.0 btn_functions.php doUpdateQuestion question_id sql injection] |
|---|
| Points | 20 |
|---|