제출 #471112: code-projects Chat System 1.0.0.00 SQL Injection정보

제목code-projects Chat System 1.0.0.00 SQL Injection
설명In the file 'update_user.php' located at /admin/update_user.php, there is a possibility of performing SQL injection on the 'name and id' parameter. This allows attackers to inject malicious SQL code into the query. For example, if the name and id parameter is set to: error-based: script=1' AND 4381=(SELECT (CASE WHEN (4381=4381) THEN 4381 ELSE (SELECT 6122 UNION SELECT 5924) END))-- -
원천⚠️ https://code-projects.org/chat-system-using-php-source-code/
사용자
 Havook (UID 71104)
제출2024. 12. 28. PM 04:18 (2 연령 ago)
모더레이션2024. 12. 29. PM 04:38 (1 day later)
상태수락
VulDB 항목289768 [code-projects Chat System 1.0 /admin/update_user.php 아이디 SQL 주입]
포인트들20

Do you know our Splunk app?

Download it now for free!