| Title | SourceCodester Simple Book Catalog App v1.0 has SQL injection |
|---|
| Description | SQL Injection is a type of security vulnerability that enables attackers to interfere with the queries that an application makes to its database. It occurs when an application includes unsafe user input within a query. The attacker can then manipulate the query, leading to unauthorized data access, data modification, or even data deletion.
Simple Book Catalog App v1.0 has a SQL injection vulnerability, which can be used to delete a table via a control parameter.
|
|---|
| Source | ⚠️ https://skypoc.wordpress.com/2023/09/04/sourcecodester-simple-book-catalog-app-v1-0-has-multiple-vulnerabilities/ |
|---|
| User | gikaku (UID 53862) |
|---|
| Submission | 09/04/2023 02:36 (3 years ago) |
|---|
| Moderation | 09/08/2023 17:37 (5 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 239257 [SourceCodester Simple Book Catalog App 1.0 delete_book.php delete sql injection] |
|---|
| Points | 20 |
|---|