Researchers from Eioneus found one of the worst SQL Injection Vulnerability in the Employee Provident Fund Organization’s Online Portal. With this Vulnerability, a malicious user can gain access to the entire Provident Fund Database. The flaw is immediately reported to …
Category: A1 – Injection
Injection flaws, such as SQL, NoSQL, OS, and LDAP injection, occur when untrusted data is sent to an interpreter as part of a command or query. The attacker’s hostile data can trick the interpreter into executing unintended commands or accessing data without proper authorization.