| Title | SourceCodester SourceCodester Best house rental management system project in php 1.0 SQL Injection |
|---|
| Description | A SQL injection vulnerability was found in the "admin_class.php" file of the "Best house rental management system project in php" project. The cause of the issue is that an attacker injects malicious code from the parameter "username" and uses it directly for SQL queries to the database without verification. This allows an attacker to construct input values, thereby manipulating SQL queries and performing unauthorized operations. |
|---|
| Source | ⚠️ https://github.com/yezzzo/y3/blob/main/SourceCodester%20Best%20house%20rental%20management%20system%20project%20in%20php%201.0%20SQL%20Injection.md |
|---|
| User | y3z1f4n (UID 70594) |
|---|
| Submission | 06/16/2024 12:00 (2 years ago) |
|---|
| Moderation | 06/16/2024 18:59 (7 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 268767 [SourceCodester Best House Rental Management System 1.0 admin_class.php login Username sql injection] |
|---|
| Points | 20 |
|---|