Invia #582915: chaitak-gorai blogbook latest version as of 2025/05/22 SQL Injectioninformazioni

Titolochaitak-gorai blogbook latest version as of 2025/05/22 SQL Injection
DescrizioneThe BlogBook application is vulnerable to SQL injection via the search parameter in the "search.php" script. An unauthenticated attacker can exploit this by submitting a specially crafted search term through a POST request. This allows arbitrary SQL command execution on the backend database, potentially leading to unauthorized access to all database content, data manipulation, and denial of service.
Fonte⚠️ https://github.com/rllvusgnzm98/Report/blob/main/blogbook/BlogBook%20search.php%20search%20Parameter%20SQL%20Injection.md
Utente
 bpy9ft (UID 85221)
Sottomissione22/05/2025 09:36 (1 Anno fa)
Moderazione31/05/2025 18:13 (9 days later)
StatoAccettato
Voce VulDB310744 [chaitak-gorai Blogbook fino a 92f5cf90f8a7e6566b576fe0952e14e1c6736513 GET Parameter /search.php Ricerca negazione del servizio]
Punti19

PrecedenteVisione D'ensembleIl prossimo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!