2 matches found
CVE-2018-25389
HaPe PKH 1.1 is affected by an SQL injection vulnerability in the nama_kelompok POST parameter used by lap-anggota-kelompok-pdf.php. The vulnerability allows unauthenticated attackers to manipulate database queries, and a crafted time-based blind payload could be used to infer and extract sensiti...
Sitejo HaPe PKH SQL注入漏洞
Sitejo HaPe PKH is a community poverty alleviation project management system developed by Sitejo Corporation. Version 1.1 of Sitejo HaPe PKH contains an SQL injection vulnerability. This vulnerability arises from injecting SQL code through the namakelompok POST parameter, which may allow...