2024-08-06 11:04:38
INCIBE
PUBLISHED
SQL injection vulnerability in E-Negosyo System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in phonenumber in /passwordrecover.php parameter.