Enviar #282039: Limbas Limbas 5.2.14 Blind SQL injectioninformación

TítuloLimbas Limbas 5.2.14 Blind SQL injection
DescripciónAfter logging in(default:admin/limbas), on the "/main_admin.php?action=setup_gtab_ftype&group_bzm=&tab_group=1&atid=2" page, the parameter "tab_group" has the risk of blind SQL injection. It is recommended to take defensive measures such as input validation or parameterized query for SQL statements. Exploiting this vulnerability could enable an attacker to take control of the application, alter or access data, or leverage recent vulnerabilities present in the underlying database.
Fuente⚠️ https://github.com/liyako/vulnerability/blob/main/POC/Limbas-Blind-SQL-injection.md
Usuario
 cotool (UID 63610)
Sumisión2024-02-14 09:33 (hace 2 años)
Moderación2024-02-22 20:02 (8 days later)
EstadoAceptado
Entrada de VulDB254575 [Limbas 5.2.14 main_admin.php tab_group inyección SQL]
Puntos20

Interested in the pricing of exploits?

See the underground prices here!