제출 #282039: Limbas Limbas 5.2.14 Blind SQL injection정보

제목Limbas Limbas 5.2.14 Blind SQL injection
설명After logging in(default:admin/limbas), on the "/main_admin.php?action=setup_gtab_ftype&group_bzm=&tab_group=1&atid=2" page, the parameter "tab_group" has the risk of blind SQL injection. It is recommended to take defensive measures such as input validation or parameterized query for SQL statements. Exploiting this vulnerability could enable an attacker to take control of the application, alter or access data, or leverage recent vulnerabilities present in the underlying database.
원천⚠️ https://github.com/liyako/vulnerability/blob/main/POC/Limbas-Blind-SQL-injection.md
사용자
 cotool (UID 63610)
제출2024. 02. 14. AM 09:33 (2 연령 ago)
모더레이션2024. 02. 22. PM 08:02 (8 days later)
상태수락
VulDB 항목254575 [Limbas 5.2.14 main_admin.php tab_group SQL 주입]
포인트들20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!