إرسال #161943: Students Online Internship Timesheet System v1.0 /internship_timesheet/rendered_report.php GET parameter sid exists SQL injection vulnerabilityالمعلومات

عنوانStudents Online Internship Timesheet System v1.0 /internship_timesheet/rendered_report.php GET parameter sid exists SQL injection vulnerability
الوصفStudents Online Internship Timesheet System v1.0 exists SQL injection vulnerability. Vulnerability File: /internship_timesheet/rendered_report.php GET parameter sid exists SQL injection vulnerability. Payload1: sid=1 and 777=777 The Boolean-based injection judgment is correct, so the page is displayed normally. Payload2: sid=1 and 777=666 Boolean-based injection judgment error, so the page returns an exception. Payload3: sid=1 and (select 2 from (select(sleep(5)))c) The response time of the server is greater than 5 seconds.
المصدر⚠️ https://github.com/MiserablefaithL/CVERequestReport/blob/main/SQL.md
المستخدم
 wwlcz (UID 47679)
ارسال29/05/2023 04:31 AM (3 سنوات منذ)
الاعتدال29/05/2023 08:49 AM (4 hours later)
الحالةتمت الموافقة
إدخال VulDB230142 [SourceCodester Students Online Internship Timesheet System 1.0 GET Parameter rendered_report.php sid حقن SQL]
النقاط20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!