Submit #640111: code-projects Human Resource Integrated System 1.0 SQL Injectioninfo

Titlecode-projects Human Resource Integrated System 1.0 SQL Injection
DescriptionThe id parameter in login_query12.php is not properly sanitized or parameterized, making it vulnerable to SQL injection. This vulnerability can be exploited by injecting malicious SQL code to manipulate database queries. An attacker could leverage a timing-based SQL injection method to intentionally delay database responses using functions such as SLEEP().
Source⚠️ https://github.com/cooorgi/cve/blob/main/hris_sql_log_query12.md
User
 cooorgi (UID 80520)
Submission08/22/2025 20:12 (10 months ago)
Moderation08/30/2025 18:47 (8 days later)
StatusAccepted
VulDB entry322040 [code-projects Human Resource Integrated System 1.0 /login_query12.php ID sql injection]
Points19

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!