Soumettre #333410: Campcodes Online Examination System With Timer 1.0 SQL Injectioninformation

TitreCampcodes Online Examination System With Timer 1.0 SQL Injection
DescriptionA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page submitAnswerExe.php. The value of user input (exmne_id parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
La source⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_submitAnswerExe.md
Utilisateur
 yylm (UID 67976)
Soumission13/05/2024 16:09 (il y a 2 ans)
Modérer15/05/2024 13:23 (2 days later)
StatutAccepté
Entrée VulDB264452 [Campcodes Online Examination System 1.0 submitAnswerExe.php exmne_id injection SQL]
Points19

PrécédentAperçuSuivant

Might our Artificial Intelligence support you?

Check our Alexa App!