提出 #333402: Campcodes Online Examination System With Timer 1.0 SQL Injection情報

TitleCampcodes Online Examination System With Timer 1.0 SQL Injection
DescriptionA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page addExamExe.php. The value of user input (examTitle parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
Source⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_addExamExe.md
User
 yylm (UID 67976)
Submission2024年05月13日 16:04 (1 年 ago)
Moderation2024年05月15日 13:23 (2 days later)
Status承諾済み
VulDB Entry264447 [Campcodes Online Examination System 1.0 addExamExe.php examTitle SQLインジェクション]
Points18

概要

Do you want to use VulDB in your project?

Use the official API to access entries easily!