Submit #146872: Complaint Management System v1.0 /Complaint Management System/users/registration.php POST parameter fullname exists SQL injection vulnerabilityinfo

TitelComplaint Management System v1.0 /Complaint Management System/users/registration.php POST parameter fullname exists SQL injection vulnerability
BeschreibungAn issue was discovered in Complaint Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /Complaint Management System/users/registration.php post parameter fullname. Payload1:fullname=a' and (select 1 from (select(sleep(10)))x) and 't'='t Payload2:fullname=a' and (select 1 from (select(sleep(15)))x) and 't'='t
Quelle⚠️ https://github.com/HibuMk/bug_report/blob/main/SQLi.md
Benutzer
 mckayyang (UID 45478)
Einreichung22.04.2023 05:07 (vor 3 Jahren)
Moderieren22.04.2023 17:49 (13 hours later)
StatusAkzeptiert
VulDB Eintrag227228 [SourceCodester Complaint Management System 1.0 POST Parameter users/registration.php fullname SQL Injection]
Punkte19

ZurückÜbersichtWeiter

Interested in the pricing of exploits?

See the underground prices here!