제출 #153776: Billing Management System v1.0 /smartbilling_source_code/ajax_service.php POST parameter 'drop_services' exists SQL injection vulnerability정보

제목Billing Management System v1.0 /smartbilling_source_code/ajax_service.php POST parameter 'drop_services' exists SQL injection vulnerability
설명An issue was discovered in Billing Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /smartbilling_source_code/ajax_service.php POST parameter drop_services. Payload1:drop_services=-1' union all select null,null,null,null,concat(0x616263,0x2526272829),null,null,null,null-- - Payload2:drop_services=1' and 999=999 and 'h'='h
원천⚠️ https://github.com/Yastar/bug_report/blob/main/SQLi-1.md
사용자
 yastar (UID 46302)
제출2023. 05. 09. AM 04:40 (3 연령 ago)
모더레이션2023. 05. 09. PM 02:14 (10 hours later)
상태수락
VulDB 항목228397 [SourceCodester Billing Management System 1.0 POST Parameter ajax_service.php drop_services SQL 주입]
포인트들20

이전개요다음

Do you want to use VulDB in your project?

Use the official API to access entries easily!