Submit #261901: kashipara Food Management System ≤1.0 SQL injectioninfo

Titelkashipara Food Management System ≤1.0 SQL injection
BeschreibungSQL injection vulnerability exists in type_name parameter of item_type_submit.php file of Food Management System Important user data or system data may be leaked and system security may be compromised The environment is secure and the information can be used by malicious users. Payload: type_nam = pHqghUme' RLIKE (SELECT (CASE WHEN (8992=8992) THEN 0x7048716768556d65 ELSE 0x28 END)) AND 'NgcC'='NgcC
Quelle⚠️ https://github.com/E1CHO/cve_hub/blob/main/Food%20Management%20System/Food%20Management%20System%20-%20vuln%2012.pdf
Benutzer
 SSL_Seven_Security Lab_WangZhiQiang_XiaoZiLong (UID 38936)
Einreichung03.01.2024 11:15 (vor 3 Jahren)
Moderieren06.01.2024 11:15 (3 days later)
StatusAkzeptiert
VulDB Eintrag249835 [Kashipara Food Management System bis 1.0 item_type_submit.php type_name SQL Injection]
Punkte20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!