Submit #492531: xxyopen https://github.com/201206030/novel <= 3.4.1 SQL Injection
| Titel | xxyopen https://github.com/201206030/novel <= 3.4.1 SQL Injection |
|---|---|
| Beschreibung | An attacker can launch a sql injection attack with a specific request at the /api/front/search/books interface |
| Quelle | ⚠️ https:/ |
| Benutzer | GSBP (UID 79733) |
| Einreichung | 31.01.2025 06:30 (vor 1 Jahr) |
| Moderieren | 10.02.2025 08:35 (10 days later) |
| Status | Akzeptiert |
| VulDB Eintrag | 295058 [xxyopen Novel bis 3.4.1 /api/front/search/books sort SQL Injection] |
| Punkte | 14 |