Twitter-Clone SQL Injection Vulnerability in follow.php

Vulnerability

A SQL injection vulnerability has been identified in Twitter-Clone version 1, specifically within the follow.php file. This vulnerability allows attackers to manipulate database queries by injecting SQL code through the userid parameter. Exploitation of this flaw could lead to the extraction of sensitive database information, including usernames, passwords, and database credentials.

Impact

Exploitation of this vulnerability allows for SQL injection, where attackers can manipulate database queries to extract sensitive information from the database.

Added: May 26, 2026, 7:38 PM

Updated: May 26, 2026, 7:38 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

9.4

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

9.4

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Twitter-Clone SQL Injection Vulnerability in follow.php

Vulnerability

Impact

Affected Products

Fyffe PHP-Twitter-Clone

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating