| Title | https://github.com/hongmaple/octopus octopus v 1.0 SQL injection |
|---|
| Description | A vulnerability was found in octopus system. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit . The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely.
system url:
https://github.com/hongmaple/octopus
https://gitee.com/hongmaple/octopus
report url:https://github.com/biantaibao/octopus_SQL2/tree/main |
|---|
| Source | ⚠️ https://github.com/biantaibao/octopus_SQL2/blob/main/report.md |
|---|
| User | biantaibao (UID 45650) |
|---|
| Submission | 01/23/2024 03:48 (2 years ago) |
|---|
| Moderation | 01/25/2024 15:26 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 252042 [hongmaple octopus 1.0 /system/dept/edit ancestors sql injection] |
|---|
| Points | 20 |
|---|