Submit #374797: SourceCodester Computer Laboratory Management System 1.0 SQL Injectioninfo

TitelSourceCodester Computer Laboratory Management System 1.0 SQL Injection
Beschreibung## Details ### Related Code file: `/lms/classes/Master.php?f=save_record ## Injection parameter: `MULTIPART id` ## sqlmap findings: ``` Parameter: MULTIPART id ((custom) POST) Type: boolean-based blind Title: MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause Payload: -----------------------------20097612161463129383887948722 Content-Disposition: form-data; name="id" Type: error-based Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR) Payload: -----------------------------20097612161463129383887948722 Content-Disposition: form-data; name="id" Type: time-based blind Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP) Payload: -----------------------------20097612161463129383887948722 Content-Disposition: form-data; name="id" ``` ## Report link: https://reports-kunull.vercel.app/CVE%20research/computer-laboratory-management-system-save_record
Quelle⚠️ https://www.sourcecodester.com/php/17268/computer-laboratory-management-system-using-php-and-mysql.html
Benutzer
 Anonymous User
Einreichung15.07.2024 08:57 (vor 2 Jahren)
Moderieren16.07.2024 21:20 (2 days later)
StatusAkzeptiert
VulDB Eintrag271704 [SourceCodester Computer Laboratory Management System 1.0 Master.php?f=save_record ID SQL Injection]
Punkte20

ZurückÜbersichtWeiter

Might our Artificial Intelligence support you?

Check our Alexa App!