| Title | itsourcecode Alton Management System 1.0 SQLi team_save.php |
|---|
| Description | After logging in as a backend user, request the "/admin/team_save.php" page and pass in the "team" parameter. Due to the lax filtering of the "team" parameter on this page, SQL injection vulnerabilities were created. |
|---|
| Source | ⚠️ https://github.com/DeepMountains/Mirage/blob/main/CVE8-6.md |
|---|
| User | Dee.Mirage (UID 71702) |
|---|
| Submission | 07/27/2024 12:35 (2 years ago) |
|---|
| Moderation | 07/30/2024 15:29 (3 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 273147 [itsourcecode Alton Management System 1.0 /admin/team_save.php team sql injection] |
|---|
| Points | 17 |
|---|