| Title | SourceCodester Best house rental management system V1.0 SQL Injection |
|---|
| Description | SQL injection vulnerabilities were found in the "(admin_class. php)" file of the "(Best House Lease Management System)" project. The reason for this problem is that the attacker injected malicious code from the parameter "($username)" in the save_user() function of the (admin_class. php) file; The program will input the username of the user and use it directly in the SQL query without proper cleaning or verification. This allows attackers to forge input values to operate SQL queries and perform unauthorized operations. |
|---|
| Source | ⚠️ https://github.com/WxxAbo/CVE/issues/1 |
|---|
| User | Abowxx (UID 97595) |
|---|
| Submission | 04/25/2026 09:42 (3 months ago) |
|---|
| Moderation | 05/23/2026 11:20 (28 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 277218 [SourceCodester Best House Rental Management System 1.0 /admin_class.php delete_user/save_user ID sql injection] |
|---|
| Points | 0 |
|---|