| 标题 | Online Driving School Project In PHP Sql Injection |
|---|
| 描述 | The Online Driving School Project is a simple mini project for driving institutes. The project contains admin, learners, and users. The user can either be police or victims/complainers. This project is for the institute of driver training first commenced its operations in managing the learners and people who want to take a good learners school as well as the admin which means the owner of the web application can select the best and near learners to the people and connect them both.
project link: https://code-projects.org/online-driving-school-project-in-php-with-source-code/
SQL injection vulnerability exists in /login.php. The username and password parameters are exploitable . Attackers can exploit this vulnerability to execute arbitrary SQL statements and get the admin privilege.
check the Advisory |
|---|
| 来源 | ⚠️ https://github.com/KingBridgeSS/Online_Driving_School_Project_In_PHP_With_Source_Code_Vulnerabilities/blob/main/sql_injection.md |
|---|
| 用户 | kingbridge (UID 31583) |
|---|
| 提交 | 2022-09-05 11時41分 (4 年前) |
|---|
| 管理 | 2022-09-05 15時46分 (4 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 207873 [codeprojects Online Driving School /login.php 用户名 SQL注入] |
|---|
| 积分 | 20 |
|---|