| 제목 | Labvantage LIMS 2017 SQL Injection |
|---|
| 설명 | Issue Overview:
* Vendor: Labvantage
* Product: Labvantage LIMS
* Endpoint: /labvantage/rc?command=page&page=SampleList&_iframename=list
* Vulnerable Parameter: param1
* Type of Vulnerability: SQL Injection
Description of the Vulnerability
During penetration testing, an SQL injection vulnerability was discovered in the param1 parameter of the POST request to the specified endpoint. This vulnerability allows an attacker to manipulate the SQL query by injecting arbitrary SQL code. |
|---|
| 원천 | ⚠️ https://gentle-khaan-c53.notion.site/Labvantage-LIMS-3bb2137a29944e7e9efc906f23b42a4a |
|---|
| 사용자 | Farouk (UID 69824) |
|---|
| 제출 | 2024. 05. 30. PM 09:24 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 06. 08. AM 09:38 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 267454 [LabVantage LIMS 2017 POST Request rc?command=page&page=SampleList&_iframename=list param1 SQL 주입] |
|---|
| 포인트들 | 17 |
|---|