Gửi #624003: code-projects Online Farm System V1.0 SQL injectionthông tin

tiêu đềcode-projects Online Farm System V1.0 SQL injection
Mô tảDuring the security review of "Online Farm System",I discovered a critical SQL injection vulnerability in the "/register.php" file. This vulnerability stems from insufficient user input validation of the 'MULTIPART username‘ parameter, allowing attackers to inject malicious SQL queries. Therefore, attackers can gain unauthorized access to databases, modify or delete data, and access sensitive information. Immediate remedial measures are needed to ensure system security and protect data integrity.
Nguồn⚠️ https://github.com/wllovemy/cve/issues/9
Người dùng
 wllovemy (UID 88434)
Đệ trình28/07/2025 09:20 (cách đây 12 các tháng)
Kiểm duyệt30/07/2025 10:12 (2 days later)
Trạng tháiđược chấp nhận
Mục VulDB318282 [code-projects Online Farm System 1.0 /register.php tên người dùng Tiêm SQL]
điểm20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!