Submit #800978: code-projects Online Lot Reservation System 1.0 SQL Injectioninfo

Titlecode-projects Online Lot Reservation System 1.0 SQL Injection
DescriptionAn SQL injection vulnerability was found in the loginuser.php file. Attackers can inject malicious SQL code through the email and password parameters. The system directly concatenates user input to the SQL query statement for execution without using prepared statements or input filtering, which enables attackers to bypass authentication.
Source⚠️ https://github.com/zzk6th/cve/issues/1
User
 z0ng (UID 96775)
Submission04/09/2026 13:50 (3 months ago)
Moderation04/26/2026 21:18 (17 days later)
StatusAccepted
VulDB entry359730 [code-projects Online Lot Reservation System up to 1.0 /loginuser.php email/password sql injection]
Points19

Do you want to use VulDB in your project?

Use the official API to access entries easily!