Enviar #333416: Campcodes Online Examination System With Timer 1.0 SQL Injectioninformación

TítuloCampcodes Online Examination System With Timer 1.0 SQL Injection
DescripciónA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page addCourseExe.php. The value of user input (course_name parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
Fuente⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_addCourseExe.md
Usuario
 yylm (UID 67976)
Sumisión2024-05-13 16:15 (hace 2 años)
Moderación2024-05-15 13:26 (2 days later)
EstadoAceptado
Entrada de VulDB264454 [Campcodes Online Examination System 1.0 addCourseExe.php course_name inyección SQL]
Puntos19

AnteriorVisión De ConjuntoPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!