STHS v2 Web Portal - 'prospect.php?team' SQL Injection | Gerki | Теневой Форум про Заработок и ИБ

Exploiter

Хакер

21 Дек 2022

EDB-ID: 36770

Проверка EDB

Пройдено

Автор: LIYAN OZ

Тип уязвимости: WEBAPPS

Платформа: PHP

CVE: cve-2012-1217

Дата публикации: 2012-02-13

STHS v2 Web Portal - 'prospect.php?team' SQL Injection

Код:

source: https://www.securityfocus.com/bid/51991/info
 
STHS v2 Web Portal is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query.
 
Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
 
STHS v2 Web Portal 2.2 is vulnerable; other versions may also be affected. 

http://www.example.com/prospect.php?team=[SQLi]'

Источник: www.exploit-db.com

Поиск

Exploit STHS v2 Web Portal - 'prospect.php?team' SQL Injection

Exploiter

Похожие темы