关键漏洞信息 Title: code-projects Courier Management System V1.0 SQL Injection Description: - A critical SQL injection vulnerability was found in the file. - The vulnerability arises from inadequate user input validation of the 'Consignment' parameter. - Attackers can inject malicious SQL queries, leading to unauthorized database access, data modification, or deletion, and sensitive information exposure. - Immediate remediation is necessary to secure the system and protect data integrity. Source: - https://github.com/lab1106/cve/issues/2 User: - L abi (UID 92461) Submission Date: - 11/09/2025 10:10 AM (9 days ago) Moderation Date: - 11/17/2025 03:10 PM (8 days later) Status: - Accepted VulDB Entry: - 332642 Points: - 20