SourceCodester Cab Management System sql injection

A vulnerability classified as critical has been found in SourceCodester Cab Management System 1.0. This affects an unknown part of the file /cms/classes/Users.php?f=delete_client. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-268137 was assigned to this vulnerability.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

SQL命令中使用的特殊元素转义处理不恰当(SQL注入)

Cab Management System SQL注入漏洞

Cab Management System是一个出租车管理系统。 Cab Management System 1.0版本存在SQL注入漏洞，该漏洞源于/cms/classes/Users.php中包含未知部分，通过参数 id 导致SQL注入。

N/A

N/A