Enviar #149048: Online DJ Management System v1.0 /odjms/admin/inquiries/view_details.php GET parameter id exists SQL injection vulnerabilityinformación

TítuloOnline DJ Management System v1.0 /odjms/admin/inquiries/view_details.php GET parameter id exists SQL injection vulnerability
DescripciónAn issue was discovered in Online DJ Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /odjms/admin/inquiries/view_details.php?id. Payload1:id=-1' union all select null,null,null,null,concat(0x66676869,0x515253),null,null-- - Payload2:id=1' and 6=6 AND 'x'='x
Fuente⚠️ https://github.com/yoyoyoyoyohane/bug_report/blob/main/SQLi-1.md
Usuario
 yohane (UID 45724)
Sumisión2023-04-26 12:58 (hace 3 años)
Moderación2023-04-28 13:19 (2 days later)
EstadoAceptado
Entrada de VulDB227647 [SourceCodester Online DJ Management System 1.0 GET Parameter view_details.php ID inyección SQL]
Puntos19

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!