Gửi #733344: PHPGurukul Online Course Registration System ≤ 3.1 SQL Injectionthông tin

tiêu đềPHPGurukul Online Course Registration System ≤ 3.1 SQL Injection
Mô tảA critical SQL Injection vulnerability was discovered in PHPGurukul Online Course Registration System v3.1. The vulnerability exists in the file /enroll.php, where multiple POST parameters (studentregno, Pincode, session, department, level, course, sem) are directly concatenated into an INSERT SQL query without any input validation or sanitization. An authenticated attacker can inject malicious SQL commands to extract sensitive data or compromise the database.
Nguồn⚠️ https://note-hxlab.wetolink.com/share/qX132pk8Wofk
Người dùng
 angelkate (UID 94159)
Đệ trình07/01/2026 07:21 (cách đây 5 các tháng)
Kiểm duyệt09/01/2026 10:42 (2 days later)
Trạng tháiđược chấp nhận
Mục VulDB340255 [PHPGurukul Online Course Registration System đến 3.1 /enroll.php Tiêm SQL]
điểm20

TrướcTổng QuanTiếp theo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!