| 标题 | SourceCodester Free Hospital Management System for Small Practices 1.0 has a SQL Injection vulnerability in /vm/login.php |
|---|
| 描述 | SourceCodester Free Hospital Management System for Small Practices 1.0 has a SQL Injection vulnerability in /vm/login.php. Affected is file /vm/login.php,The manipulation of the argument useremail or userpassword leads to SQL inject.Attackers can leverage blind boolean-based SQL injection to extract data from the database. |
|---|
| 来源 | ⚠️ https://github.com/Yesec/Free-Hospital-Management-System-for-Small-Practices/blob/main/SQL%20Injection%20in%20login.php/vuln.md |
|---|
| 用户 | YeSec (UID 50956) |
|---|
| 提交 | 2023-07-30 22時04分 (3 年前) |
|---|
| 管理 | 2023-08-05 18時40分 (6 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 236215 [SourceCodester Free Hospital Management System for Small Practices /vm/login.php SQL注入] |
|---|
| 积分 | 18 |
|---|