إرسال #186233: SQL injection vulnerability exists in Beauty Salon Management Systemالمعلومات

عنوان	SQL injection vulnerability exists in Beauty Salon Management System
الوصف	SQL injection vulnerability exists in id parameter of /admin/del_feedback.php file of Beauty Salon Management System Important user data or system data may be leaked and system security may be compromised The environment is secure and the information can be used by malicious users. Payload: id=-1' AND 8275=(SELECT (CASE WHEN (8275=8275) THEN 8275 ELSE (SELECT 9073 UNION SELECT 7549) END))-- - or id=-1' RLIKE SLEEP(5) AND 'tJPR'='tJPR
المصدر	⚠️ https://github.com/E1CHO/cve_hub/blob/main/Beauty%20Salon%20Management%20System/Beauty%20Salon%20Management%20System%20-%20vuln%207.pdf
المستخدم	SSL_Seven_Security Lab_WangZhiQiang_XiaoZiLong (UID 38936)
ارسال	23/07/2023 08:18 PM (3 سنوات منذ)
الاعتدال	24/07/2023 06:44 PM (22 hours later)
الحالة	تمت الموافقة
إدخال VulDB	235237 [Campcodes Beauty Salon Management System 0.1.0 /admin/del_feedback.php معرف حقن SQL]
النقاط	20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!