Submeter #282039: Limbas Limbas 5.2.14 Blind SQL injectioninformação

TítuloLimbas Limbas 5.2.14 Blind SQL injection
DescriçãoAfter logging in(default:admin/limbas), on the "/main_admin.php?action=setup_gtab_ftype&group_bzm=&tab_group=1&atid=2" page, the parameter "tab_group" has the risk of blind SQL injection. It is recommended to take defensive measures such as input validation or parameterized query for SQL statements. Exploiting this vulnerability could enable an attacker to take control of the application, alter or access data, or leverage recent vulnerabilities present in the underlying database.
Fonte⚠️ https://github.com/liyako/vulnerability/blob/main/POC/Limbas-Blind-SQL-injection.md
Utilizador
 cotool (UID 63610)
Submissão14/02/2024 09h33 (há 2 anos)
Moderação22/02/2024 20h02 (8 days later)
EstadoAceite
Entrada VulDB254575 [Limbas 5.2.14 main_admin.php tab_group Injeção SQL]
Pontos20

Might our Artificial Intelligence support you?

Check our Alexa App!