Отправить #333416: Campcodes Online Examination System With Timer 1.0 SQL InjectionИнформация

НазваниеCampcodes Online Examination System With Timer 1.0 SQL Injection
ОписаниеA vulnerability was found in Campcodes Online Examination System With Timer, impacting the page addCourseExe.php. The value of user input (course_name parameter) is directly concatenated into an SQL query without undergoing any form of filtering or utilizing prepared statements, causing the application vulnerable to SQL injection attack
Источник⚠️ https://github.com/yylmm/CVE/blob/main/Online%20Examination%20System%20With%20Timer/SQL_addCourseExe.md
Пользователь
 yylm (UID 67976)
Представление13.05.2024 16:15 (2 лет назад)
Модерация15.05.2024 13:26 (2 days later)
Статуспринято
Запись VulDB264454 [Campcodes Online Examination System 1.0 addCourseExe.php course_name SQL-инъекция]
Баллы19

ПредыдущийОбзорДалее

Do you know our Splunk app?

Download it now for free!