Invia #154623: Online Exam System v1.0 /CEE/adminpanel/admin/facebox_modal/updateCourse.php GET parameter id exists SQL injection vulnerabilityinformazioni

TitoloOnline Exam System v1.0 /CEE/adminpanel/admin/facebox_modal/updateCourse.php GET parameter id exists SQL injection vulnerability
DescrizioneAn issue was discovered in Online Exam System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /CEE/adminpanel/admin/facebox_modal/updateCourse.php?id. Vulnerability File: /CEE/adminpanel/admin/facebox_modal/updateCourse.php GET parameter 'id' exists SQL injection vulnerability Payload1:id=-2' union all select null,concat(0x76777879,0x52535556),null-- -
Fonte⚠️ https://github.com/sushanburanxisha/cve/blob/main/SQLi-1.md
Utente
 hukai (UID 46473)
Sottomissione10/05/2023 12:12 (3 anni fa)
Moderazione11/05/2023 07:17 (19 hours later)
StatoAccettato
Voce VulDB228771 [SourceCodester Online Exam System 1.0 GET Parameter updateCourse.php ID iniezione SQL]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!