Submeter #333416: Campcodes Online Examination System With Timer 1.0 SQL Injectioninformação

TítuloCampcodes Online Examination System With Timer 1.0 SQL Injection
DescriçãoA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page addCourseExe.php. The value of user input (course_name parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
Fonte⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_addCourseExe.md
Utilizador
 yylm (UID 67976)
Submissão13/05/2024 16h15 (há 2 anos)
Moderação15/05/2024 13h26 (2 days later)
EstadoAceite
Entrada VulDB264454 [Campcodes Online Examination System 1.0 addCourseExe.php course_name Injeção SQL]
Pontos19

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!