vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
GNU General Public License v3.0
1.17k
stars
303
forks
source link
Fix (api5/getAllUsers.php) #3
Closed
cyc0rpion closed 3 years ago
Hi,
While making request to getAllUsers.php, it returns data of only a single user instead of all users.
Below change in Line 22 should fix it.
while($row=$result->fetch_assoc())changed towhile($row=$result2->fetch_assoc())