PT-2022-12353 · Sourcecodester · Simple Cold Storage Management System
Published
2022-02-02
·
Updated
2023-12-28
·
CVE-2021-45436
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Sourcecodester Simple Cold Storage Management System version 1.0
Description
An SQL Injection issue exists in the login functionality, specifically through the
username field in the login.php file. This allows for potential unauthorized access and data manipulation.Recommendations
For version 1.0, consider validating and sanitizing user input for the
username field to prevent SQL injection attacks. As a temporary workaround, restrict access to the login.php file until a proper fix is applied. Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Simple Cold Storage Management System