Prison Management System SQL注入漏洞

Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates in the application /pms/admin/cells/managecell.php in the id parameter in /pms/admin/cells/managecell.php is missing the S...

PT-2022-14417 · Sourcecodester · Sourcecodester Prison Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Prison Management System version 1.0 Description: A critical issue was found in the New User Creation component, specifically in the /classes/Users.php?f=save file, which leads to improper authorization. This issue can be...