Gửi #343431: SourceCodester Best House Rental Management System 1.0 SQL Injectionthông tin

tiêu đềSourceCodester Best House Rental Management System 1.0 SQL Injection
Mô tảAfter receiving the id parameter passed in through the get method in the manage_tenant.php file, it is directly spliced into the SQL query statement for execution without any security filtering. An attacker can use this parameter to perform SQL injection to read arbitrary database information.
Nguồn⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester_House_Rental_Management_System_Sql_Inject-2.md
Người dùng
 rocker (UID 62454)
Đệ trình23/05/2024 16:06 (cách đây 2 những năm)
Kiểm duyệt25/05/2024 08:11 (2 days later)
Trạng tháiđược chấp nhận
Mục VulDB266276 [SourceCodester Best House Rental Management System đến 1.0 manage_tenant.php ID Tiêm SQL]
điểm18

Want to know what is going to be exploited?

We predict KEV entries!