| Title | MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 SQL Injection |
|---|
| Description | The Online College Event Hall Reservation System has a Blind SQL Injection vulnerability affecting home.php and logincheck.php. By manipulating the id parameter, attackers can execute unauthorized SQL queries, demonstrated by a delay using the sleep function, underscoring the need for parameterized queries to secure web applications against such vulnerabilities. |
|---|
| Source | ⚠️ https://github.com/skid-nochizplz/skid-nochizplz/blob/main/TrashBin/CVE/MAGESH-K21%20%20Online-College-Event-Hall-Reservation-System/Blind%20SQL%20Injection%20-%20home.php.md |
|---|
| User | nochizplz (UID 64302) |
|---|
| Submission | 03/06/2024 16:23 (2 years ago) |
|---|
| Moderation | 03/15/2024 17:29 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 256953 [MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 home.php ID sql injection] |
|---|
| Points | 18 |
|---|