| Title | SourceCodester Student Study Center Desk Management System 1.0 Boolean based blind SQLi |
|---|
| Description | ## Details
### Related Code file:
`/sscdms/classes/Users.php?f=save`
## Injection parameter:
`MULTIPART id`
## POC
### sqlmap finding
```
Parameter: MULTIPART id ((custom) POST)
Type: boolean-based blind
Title: Boolean-based blind - Parameter replace (original value)
Payload: -----------------------------375499073526017961903522895095
Content-Disposition: form-data; name="id"
```
## Report: https://reports-kunull.vercel.app/CVE%20research/student-study-center-desk-management-system-save_user |
|---|
| Source | ⚠️ https://www.sourcecodester.com/php/16298/student-study-center-desk-management-system-using-php-oop-and-mysql-db-free-source-code |
|---|
| User | Anonymous User |
|---|
| Submission | 07/13/2024 16:58 (2 years ago) |
|---|
| Moderation | 07/13/2024 19:23 (2 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 271450 [SourceCodester Student Study Center Desk Management System 1.0 Users.php?f=save ID sql injection] |
|---|
| Points | 20 |
|---|