| Title | code-projects OnlineReviewerSystem 1.0 SQL Injection |
|---|
| Description | During the security assessment of "Online Reviewer System", a critical SQL injection vulnerability was detected in the "login/index.php" file. This vulnerability is attributed to the insufficient validation of user input for the "username" and "password" parameters. This inadequacy enables attackers to inject malicious SQL queries. |
|---|
| Source | ⚠️ https://github.com/liaoliao-hla/cve/issues/2 |
|---|
| User | huat (UID 92445) |
|---|
| Submission | 02/04/2026 07:38 (3 months ago) |
|---|
| Moderation | 02/07/2026 10:13 (3 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 344868 [code-projects Online Reviewer System 1.0 Login /login/index.php username/password sql injection] |
|---|
| Points | 19 |
|---|