| ଶୀର୍ଷକ | SQL injection vulnerability in Student Attendance Management System |
|---|
| ବର୍ଣ୍ଣନା | SQL injection vulnerability in Student Attendance Management System。input [email protected] / Password@123 Log in to the background. Then modify the information in createClass Php, the ID is assigned to the variable $ID, and then inserted into the database for query, and the query information is returned, However, there is no filtering,causing a SQL injection vulnerability |
|---|
| ଉତ୍ସ | ⚠️ https://github.com/rickxy/Student-Attendance-Management-System/issues/2 |
|---|
| ଉପଭୋକ୍ତା | ace. (UID 34853) |
|---|
| ଦାଖଲ | 11/17/2022 07:54 AM (3 ବର୍ଷ ବର୍ଷ ago) |
|---|
| ମଧ୍ୟମ ଧରଣର | 11/17/2022 04:10 PM (8 hours later) |
|---|
| ସ୍ଥିତି | ଗ୍ରହଣ କରାଯାଇଛି |
|---|
| VulDB ଏଣ୍ଟ୍ରି | 213845 [Student Attendance Management System /Admin/createClass.php ID SQL ଇଞ୍ଜେକ୍ସନ] |
|---|
| ପଏଣ୍ଟ | 20 |
|---|