Submit #515429: PHPGurukul Human Metapneumovirus Testing Management System 1.0 SQL Injectioninfo

TitlePHPGurukul Human Metapneumovirus Testing Management System 1.0 SQL Injection
DescriptionWhen updating user information, the **mobilenumber** parameter in `profile.php` is vulnerable to SQL injection attacks. This vulnerability stems from insufficient validation of user input for the "mobnumber" parameter, allowing attackers to inject time-based malicious SQL queries.
Source⚠️ https://github.com/SECWG/cve/issues/7
User
 WenGui (UID 82184)
Submission03/06/2025 15:35 (1 Year ago)
Moderation03/16/2025 14:19 (10 days later)
StatusAccepted
VulDB entry299873 [PHPGurukul Human Metapneumovirus Testing Management System 1.0 /profile.php aid/adminname/mobilenumber/email sql injection]
Points17

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!