| Título | https://github.com/hongmaple/octopus octopus v 1.0 SQL injection |
|---|
| Descrição | A vulnerability was found in octopus system. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit . The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely.
system url:
https://github.com/hongmaple/octopus
https://gitee.com/hongmaple/octopus
report url:https://github.com/biantaibao/octopus_SQL2/tree/main |
|---|
| Fonte | ⚠️ https://github.com/biantaibao/octopus_SQL2/blob/main/report.md |
|---|
| Utilizador | biantaibao (UID 45650) |
|---|
| Submissão | 23/01/2024 03h48 (há 2 anos) |
|---|
| Moderação | 25/01/2024 15h26 (2 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 252042 [hongmaple octopus 1.0 /system/dept/edit ancestors Injeção SQL] |
|---|
| Pontos | 20 |
|---|