| 标题 | edoc Doctor's Appointment System 1.0 Sqlinjection |
|---|
| 描述 | Doctor's Appointment System edit-doc.php.php has Sqlinjection,The basic introduction of this vulnerability is that SQL injection means that the web application does not judge or filter the validity of user input data strictly.An attacker can add additional SQL statements to the end of the predefined query statements in the web application to achieve illegal operations without the administrator's knowledge, so as to cheat the database server to execute unauthorized arbitrary queries and further obtain the corresponding data information.
Source DownLoad:https://www.sourcecodester.com/hashenudara/simple-doctors-appointment-project.html
Links to relevant reports are provided |
|---|
| 来源 | ⚠️ https://github.com/Viciglu/edoccve/blob/main/Doctor's%20Appointment%20System%20edit-doc.php.php%20has%20Sqlinjection.pdf |
|---|
| 用户 | H.Shanley (UID 66887) |
|---|
| 提交 | 2024-03-26 13時38分 (2 年前) |
|---|
| 管理 | 2024-03-26 16時57分 (3 hours later) |
|---|
| 状态 | 重复 |
|---|
| VulDB条目 | 221825 [SourceCodester Doctors Appointment System 1.0 /admin/edit-doc.php email/oldmail SQL注入] |
|---|
| 积分 | 0 |
|---|