| 标题 | code-projects E-Health Care System IN PHP v1.0 SQL INJECTION |
|---|
| 描述 | There are unrestricted SQL injection attacks in the E-Health Care System. Controllable parameters: name .
In chat.php, there are no filter parameters, and there is no restriction on the execution of concatenated SQL statements, resulting in SQL injection vulnerabilities. You can obtain sensitive information from the database |
|---|
| 来源 | ⚠️ https://github.com/Xueweian/cve/blob/main/sql18.md |
|---|
| 用户 | Xueweian (UID 77082) |
|---|
| 提交 | 2024-11-04 06時32分 (2 年前) |
|---|
| 管理 | 2024-11-04 18時59分 (12 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 283037 [code-projects E-Health Care System 1.0 /Doctor/chat.php name/message SQL注入] |
|---|
| 积分 | 18 |
|---|