| عنوان | Campcodes Online Examination System With Timer 1.0 SQL Injection |
|---|
| الوصف | A vulnerability was found in Campcodes Online Examination System With Timer, impacting the page submitAnswerExe.php. The value of user input (exmne_id parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack |
|---|
| المصدر | ⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_submitAnswerExe.md |
|---|
| المستخدم | yylm (UID 67976) |
|---|
| ارسال | 13/05/2024 04:09 PM (2 سنوات منذ) |
|---|
| الاعتدال | 15/05/2024 01:23 PM (2 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 264452 [Campcodes Online Examination System 1.0 submitAnswerExe.php exmne_id حقن SQL] |
|---|
| النقاط | 19 |
|---|