关键信息 Title: SourceCodester Train Station Ticketing System V1.0 SQL Injection Description: - A SQL injection vulnerability exists in the "yajax.php?action=save_user" file. - Due to insufficient user input validation, attackers can inject malicious SQL queries by manipulating the username parameter. - Potential impact: Unauthorized access to databases, data modification or deletion, and access to sensitive information. Source: https://github.com/pupuhylhi-FIVE/Issues/17 User: VulDB (UID+n44l1) Submission Date: 11/10/2022 11:14 AM (3 days ago) Moderation Date: 11/10/2022 7:20 AM (3 hours ago) Status: Active VulDB Entry: SourceCodester Train Station Ticketing System V1.0 yajax.php?action=save_user Username sql injection Points: 20