Soumettre #266018: Taokeyun Taokeyun <=1.0.5 SQL Injectioninformation

TitreTaokeyun Taokeyun <=1.0.5 SQL Injection
DescriptionThe Taokeyun software, version 1.0.5 and below, suffers from a critical SQL Injection vulnerability in the file application/index/controller/app/Video.php. Specifically, the "index" function improperly handles user-supplied input in the 'cid' parameter, leading to potential manipulation of SQL queries. This flaw could allow an attacker to execute arbitrary SQL commands on the underlying database, potentially leading to unauthorized access, data leakage, or other malicious activities.
La source⚠️ https://note.zhaoj.in/share/MuWxURhTIYTP
Utilisateur
 glzjin (UID 59815)
Soumission11/01/2024 09:03 (il y a 2 ans)
Modérer12/01/2024 12:11 (1 day later)
StatutAccepté
Entrée VulDB250587 [Taokeyun jusqu’à 1.0.5 HTTP POST Request Video.php index cid injection SQL]
Points20

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!