Invia #282039: Limbas Limbas 5.2.14 Blind SQL injectioninformazioni

TitoloLimbas Limbas 5.2.14 Blind SQL injection
DescrizioneAfter logging in(default:admin/limbas), on the "/main_admin.php?action=setup_gtab_ftype&group_bzm=&tab_group=1&atid=2" page, the parameter "tab_group" has the risk of blind SQL injection. It is recommended to take defensive measures such as input validation or parameterized query for SQL statements. Exploiting this vulnerability could enable an attacker to take control of the application, alter or access data, or leverage recent vulnerabilities present in the underlying database.
Fonte⚠️ https://github.com/liyako/vulnerability/blob/main/POC/Limbas-Blind-SQL-injection.md
Utente
 cotool (UID 63610)
Sottomissione14/02/2024 09:33 (2 anni fa)
Moderazione22/02/2024 20:02 (8 days later)
StatoAccettato
Voce VulDB254575 [Limbas 5.2.14 main_admin.php tab_group iniezione SQL]
Punti20

Want to know what is going to be exploited?

We predict KEV entries!