| 标题 | Sourcecodester Contact Manager App has SQL injection vulnerability. |
|---|
| 描述 | SQL Injection is a code injection technique that attackers use to exploit vulnerabilities in a web application's database query. The attacker can inject malicious SQL statements into input fields for execution, which can lead to unauthorized viewing of data, data manipulation, and other destructive outcomes.
In the Sourcecodester Contact Manager App, attackers can exploit a SQL injection vulnerability to delete the entire contact table.
Please refer to the Exploit link for vulnerability proof. |
|---|
| 来源 | ⚠️ https://skypoc.wordpress.com/2023/09/05/vuln1/ |
|---|
| 用户 | gikaku (UID 53862) |
|---|
| 提交 | 2023-09-06 01時47分 (3 年前) |
|---|
| 管理 | 2023-09-09 10時16分 (3 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 239357 [SourceCodester Contact Manager App 1.0 add.php contact/contactName SQL注入] |
|---|
| 积分 | 20 |
|---|