Submit #114014: SQL injection vulnerability exists in Advanced Online Voting Systeminfo

TitelSQL injection vulnerability exists in Advanced Online Voting System
BeschreibungSQL injection vulnerability exists in description parameter of /admin/positions_add.php file of Advanced Online Voting System Important user data or system data may be leaked and system security may be compromised The environment is secure and the information can be used by malicious users. Payload: add=1&description=0' RLIKE SLEEP(5) AND 'vNob'='vNob&max_vote=1
Quelle⚠️ https://github.com/E1CHO/cve_hub/blob/main/Advanced%20Online%20Voting%20System/Advanced%20Online%20Voting%20System%20-%20vuln%204.pdf
Benutzer
 SSL_Seven_Security Lab_WangZhiQiang_XiaoZiLong (UID 38936)
Einreichung14.04.2023 04:25 (vor 3 Jahren)
Moderieren14.04.2023 09:42 (5 hours later)
StatusAkzeptiert
VulDB Eintrag225935 [Campcodes Advanced Online Voting System 1.0 /admin/positions_add.php Beschreibung SQL Injection]
Punkte19

ZurückÜbersichtWeiter

Do you want to use VulDB in your project?

Use the official API to access entries easily!