2 matches found
code-projects Car Rental System 安全漏洞
Car Rental System is a car rental system. Car Rental System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter fname in the file /bookcar.php. The vulnerability can be exploited to execute illegal SQL...
The vulnerability in the implementation of the account.php, login.php, and book_car.php scripts of the CMS system, Official Car Rental System, allows a violator to bypass security restrictions.
The vulnerability in the implementation of the account.php, login.php, and bookcar.php scripts of the Official Car Rental System relates to the lack of measures taken to protect the SQL query structure when processing parameters such as uname, pass, and id. Exploiting this vulnerability allows a...