| Title | ProjectsAndPrograms school-management-system V1.0 SQL Injection |
|---|
| Description | owner_panel/fetch-data/select-students.php Being in the front end delay SQL injection vulnerability
This vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings. Due to insufficient verification of user input, attackers can insert malicious SQL code into input fields, thereby bypassing authentication, accessing or modifying sensitive data in the database, and even performing database management operations |
|---|
| Source | ⚠️ https://gold-textbook-8ff.notion.site/school-management-system-student_panel-Owner-end-select-students-php-delay-SQL-injection-27485e97f35380a1b482c8e079cd6503 |
|---|
| User | gzhu_yingyi_lin (UID 90776) |
|---|
| Submission | 09/20/2025 16:43 (7 months ago) |
|---|
| Moderation | 09/26/2025 11:50 (6 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 326096 [ProjectsAndPrograms School Management System 1.0 select-students.php select sql injection] |
|---|
| Points | 17 |
|---|