Employee and Visitor Gate Pass Logging - SQL Injection - Bypass Authentication
Vendor
Description:
The system Employee and Visitor Gate Pass Logging 1.0 is vulnerable to SQL Injection - Bypass Authentication.
The parameter username is not sanitized correctly. The malicious actor can use this vulnerability to manipulate the administrator account of the system
and can take full control of the information about the other accounts.
Status: CRITICAL
NOTE: The PoC must be built with your parameters. =) ;)
Poc-bypass.exe
