| 제목 | Campcodes Online Examination System With Timer 1.0 SQL Injection |
|---|
| 설명 | A vulnerability was found in Campcodes Online Examination System With Timer, impacting the page updateQuestion.php. The value of user input (id parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack |
|---|
| 원천 | ⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_updateQuestion.md |
|---|
| 사용자 | yylm (UID 67976) |
|---|
| 제출 | 2024. 05. 13. PM 04:14 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 05. 15. PM 01:23 (2 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 264453 [Campcodes Online Examination System 1.0 updateQuestion.php 아이디 SQL 주입] |
|---|
| 포인트들 | 18 |
|---|