Submeter #333410: Campcodes Online Examination System With Timer 1.0 SQL Injectioninformação

TítuloCampcodes Online Examination System With Timer 1.0 SQL Injection
DescriçãoA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page submitAnswerExe.php. The value of user input (exmne_id parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
Fonte⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_submitAnswerExe.md
Utilizador
 yylm (UID 67976)
Submissão13/05/2024 16h09 (há 2 anos)
Moderação15/05/2024 13h23 (2 days later)
EstadoAceite
Entrada VulDB264452 [Campcodes Online Examination System 1.0 submitAnswerExe.php exmne_id Injeção SQL]
Pontos19

VoltarVisão GeralPróximo

Interested in the pricing of exploits?

See the underground prices here!