2 matches found
The vulnerability of the FAQ Management System’s /endpoint/delete-faq.php script allows a hacker to execute arbitrary SQL queries against the database.
The vulnerability of the Add FAQ component of the management system’s FAQ module often stems from the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries against the database remotely...
PT-2024-18694 · Sourcecodester · Sourcecodester Loan Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester FAQ Management System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file /endpoint/delete-faq.php. The manipulation of the faq argument leads to sql injection,...