| Title | SourceCodester Food Ordering Management System 1.0 SQL Injection |
|---|
| Description | SQL Injection vulnerability was discovered from Sourcecodester Food Ordering Management System 1.0.
add-users.php has a vulnerable parameter 'contact', which allows time-based blind sql injection. Either through crafted payload or premade tool such as sqlmap, this vulnerability can be recreated easily. This SQL injection leads to completely data breach for all the database on the system. |
|---|
| Source | ⚠️ https://github.com/jadu101/CVE/blob/main/SourceCodester_Food_Ordering_Management_System_add_users_Sqli.md |
|---|
| User | jadu101 (UID 70632) |
|---|
| Submission | 06/19/2024 09:26 (2 years ago) |
|---|
| Moderation | 06/20/2024 19:31 (1 day later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 269280 [SourceCodester Food Ordering Management System 1.0 add-users.php Contact sql injection] |
|---|
| Points | 19 |
|---|