Vulnerabilities

CVE-2020-11545

by Fred · 06/04/2020

Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id parameter (book_car.php) This allows an attacker to dump the MySQL database and to bypass the login authentication prompt.

Date published : 2020-04-06

https://frostylabs.net/writeups/cve-2020-11545/

Similar

Tags: Cybersecurity Alert