Invia #155140: Covid-19 Contact Tracing System v1.0 /cts_qr/admin/establishment/manage.php?id has SQL injectioninformazioni

TitoloCovid-19 Contact Tracing System v1.0 /cts_qr/admin/establishment/manage.php?id has SQL injection
DescrizioneCovid-19 Contact Tracing System v1.0 has SQL injection. vendors: https://www.sourcecodester.com/php/14728/covid-19-contact-tracing-system-web-app-qr-code-scanning-using-php-source-code.html Vulnerability url: /cts_qr/admin/establishment/manage.php?id. Payload: id=-3 union all select null,null,concat(0x66676869,0x3536373839),null,null,null,null-- - The union query succeeds, proving that SQL injection vulnerability exists.
Fonte⚠️ https://github.com/BacteriaJun/cve/blob/main/SQL.md
Utente
 TangJun (UID 46567)
Sottomissione11/05/2023 14:14 (3 anni fa)
Moderazione12/05/2023 10:17 (20 hours later)
StatoAccettato
Voce VulDB228891 [SourceCodester Covid-19 Contact Tracing System 1.0 manage.php ID iniezione SQL]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Do you know our Splunk app?

Download it now for free!