إرسال #333407: Campcodes Online Examination System With Timer 1.0 SQL Injectionالمعلومات

عنوانCampcodes Online Examination System With Timer 1.0 SQL Injection
الوصفA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page ranking-exam.php. The value of user input (exam_id parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
المصدر⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_ranking-exam.md
المستخدم
 yylm (UID 67976)
ارسال13/05/2024 04:06 PM (2 سنوات منذ)
الاعتدال15/05/2024 01:23 PM (2 days later)
الحالةتمت الموافقة
إدخال VulDB264449 [Campcodes Online Examination System 1.0 ranking-exam.php exam_id حقن SQL]
النقاط19

التالي نظرة عامة السابق

Want to know what is going to be exploited?

We predict KEV entries!