| Title | 201206030 novel-plus v4.3.0-RC1 SQL inject |
|---|
| Description | The /novel/bookComment/list interface of the novel-admin subsystem in the novel-plus system has SQL injection vulnerability.
https://github.com/red0-ha1yu/warehouse/blob/main/novel-plus_sqlinject2.md |
|---|
| Source | ⚠️ https://github.com/red0-ha1yu/warehouse/blob/main/novel-plus_sqlinject2.md |
|---|
| User | red0_ha1yu (UID 61457) |
|---|
| Submission | 01/18/2024 04:05 (2 years ago) |
|---|
| Moderation | 01/26/2024 12:19 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 252185 [Novel-Plus 4.3.0-RC1 /novel/bookComment/list sort sql injection] |
|---|
| Points | 17 |
|---|