| Title | SourceCodester Medicine Tracker System 1.0 SQL Injection |
|---|
| Description | SQL Injection vulnerability was discovered from Sourcecodester Medicine Tracker System. Users.php file has a vulnerable parameter 'MULTIPART username', which is vulnerable to time based blind sql injection. This vulnerability is critical since it leads to complete data dump and account take overs. |
|---|
| Source | ⚠️ https://github.com/jadu101/CVE/blob/main/SourceCodester_Medicine_Tracker_System_Users_php_sqli.md |
|---|
| User | jadu101 (UID 70632) |
|---|
| Submission | 06/27/2024 11:04 (2 years ago) |
|---|
| Moderation | 06/30/2024 16:51 (3 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 270009 [SourceCodester Medicine Tracker System 1.0 Users.php?f=register_user Username sql injection] |
|---|
| Points | 17 |
|---|