| Title | octopus https://github.com/hongmaple/octopus v 1.0 SQL injection |
|---|
| Description | The octopus system has a vulnerability classified as severe. This may cause attackers to remotely inject operating system commands or code directly into the backend server. So as to control the backend system.
Attackers can steal sensitive data, such as user credentials, personal information, or business data, by injecting malicious SQL queries. Or control the server through SQL injection .
system url:
https://github.com/hongmaple/octopus
https://gitee.com/hongmaple/octopus
report url:
https://github.com/biantaibao/octopus_SQL/tree/main |
|---|
| Source | ⚠️ https://github.com/biantaibao/octopus_SQL/blob/main/report.md |
|---|
| User | biantaibao (UID 45650) |
|---|
| Submission | 01/22/2024 11:31 (2 years ago) |
|---|
| Moderation | 01/22/2024 12:18 (47 minutes later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 251700 [hongmaple octopus 1.0 /system/role/list dataScope sql injection] |
|---|
| Points | 20 |
|---|