| Titel | SourceCodester Kortex Advocate office Management System (add_act.php) 1.0 Time based SQL injection |
|---|
| Beschreibung | Related Code file: /control/add_act_.php
Injection parameter: MULTIPART aname
POST parameter 'MULTIPART aname' is vulnerable.
sqlmap finding:
```
Parameter: MULTIPART aname ((custom) POST)
Type: boolean-based blind
Title: MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: -----------------------------8879615583215427378340903645
Content-Disposition: form-data; name="aname"
```
Report link: https://reports-kunull.vercel.app/sourcecodester-advocate-management-system-add-act |
|---|
| Quelle | ⚠️ https://www.sourcecodester.com/php/17280/advocate-office-management-system-free-download.html |
|---|
| Benutzer | Anonymous User |
|---|
| Einreichung | 12.07.2024 15:37 (vor 2 Jahren) |
|---|
| Moderieren | 13.07.2024 07:33 (16 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 271402 [SourceCodester Kortex Lite Advocate Office Management System 1.0 /control/add_act.php aname SQL Injection] |
|---|
| Punkte | 20 |
|---|