| عنوان | Campcodes Online Examination System With Timer 1.0 SQL Injection |
|---|
| الوصف | A vulnerability was found in Campcodes Online Examination System With Timer, impacting the page selExamAttemptExe.php. The value of user input (thisId parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack |
|---|
| المصدر | ⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_selExamAttemptExe.md |
|---|
| المستخدم | yylm (UID 67976) |
|---|
| ارسال | 13/05/2024 04:09 PM (2 سنوات منذ) |
|---|
| الاعتدال | 15/05/2024 01:23 PM (2 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 264451 [Campcodes Online Examination System 1.0 selExamAttemptExe.php thisId حقن SQL] |
|---|
| النقاط | 18 |
|---|