| Title | sourcecodester Employee and Visitor Gate Pass Logging System v1.0 SQL injection |
|---|
| Description | In Master.php, the $employee_code parameter is controllable and directly brought into the SQL statement for execution, causing a SQL injection vulnerability. |
|---|
| Source | ⚠️ https://github.com/Xu-Mingming/cve/blob/main/sql.md |
|---|
| User | Xu Mingming (UID 70318) |
|---|
| Submission | 06/13/2024 03:38 (2 years ago) |
|---|
| Moderation | 06/13/2024 17:24 (14 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 268422 [SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php?f=log_employee employee_code sql injection] |
|---|
| Points | 16 |
|---|