SQL_Injection issue exists @ vulnerabilities/sqli_blind/source/low.php in branch master
Method <?php at line 1 of vulnerabilities\sqli_blind\source\low.php gets user input from the _GET element. This element’s value then flows through the code without being properly sanitized or validated, and is eventually used in a database query in method <?php at line 1 of vulnerabilities\sqli_blind\source\low.php. This may enable an SQL Injection attack.
cxdcox
commented
4 years ago
SQL_Injection issue exists @ vulnerabilities/sqli_blind/source/low.php in branch master
Method <?php at line 1 of vulnerabilities\sqli_blind\source\low.php gets user input from the _GET element. This element’s value then flows through the code without being properly sanitized or validated, and is eventually used in a database query in method <?php at line 1 of vulnerabilities\sqli_blind\source\low.php. This may enable an SQL Injection attack.
Severity: High
CWE:89
Checkmarx
Lines: 5
Code (Line #5):