| tiêu đề | Itsourcecode Itsourcecode Online File Management System V1.0 SQL Injection |
|---|
| Mô tả | A critical SQL injection vulnerability exists in the /admin_class.php file of the Online File Management System. The application fails to properly sanitize user input before incorporating it into SQL queries, specifically during the authentication process.
An attacker can exploit this vulnerability by injecting malicious SQL code through the username field, allowing them to bypass authentication mechanisms and potentially gain unauthorized access to the entire database.
|
|---|
| Nguồn | ⚠️ https://github.com/jaisurya-me/CVE/issues/1 |
|---|
| Người dùng | Jaisuryavel (UID 92667) |
|---|
| Đệ trình | 16/11/2025 20:22 (cách đây 7 các tháng) |
|---|
| Kiểm duyệt | 20/11/2025 18:05 (4 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 333085 [itsourcecode Online File Management System 1.0 /ajax.php?action=login tên người dùng Tiêm SQL] |
|---|
| điểm | 20 |
|---|