| Title | code-projects Student Information System 2.0 SQL Injection |
|---|
| Description | In the index.php file of Student Information System, theuser username parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and server permissions |
|---|
| Source | ⚠️ https://github.com/asd1238525/cve/blob/main/SQL13.md |
|---|
| User | yunlin (UID 79129) |
|---|
| Submission | 11/02/2025 10:29 (5 months ago) |
|---|
| Moderation | 11/15/2025 07:57 (13 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 332567 [code-projects Student Information System 2.0 /index.php Username sql injection] |
|---|
| Points | 17 |
|---|