An attacker can inject arbitrary SQL queries that enable SQL injection and obtain access to internal database structures. Any system that uses this software, especially online community websites with user accounts, should have its database security measures top of mind.
Another serious issue with Library Management System v1.0 is the fact that it does not provide any type of input validation on its users. This leaves a large amount of freedom for the user to enter any type of data. An attacker can craft a form with one field that is specially crafted to inject PHP code and execute it via another user’s account. This can lead to remote code execution.
Another critical vulnerability discovered in Library Management System v1.0 is the fact that it does not validate user-provided input. This means that any attacker can craft a specially crafted URL that injects PHP code and execute it via another user’s account. This can lead to remote code execution.
Timeline
Published on: 08/25/2022 22:15:00 UTC
Last modified on: 08/27/2022 02:30:00 UTC