Web Vulnerability Report
ID | EDB-ID-48870 |
CVSS 3.0 | N/A |
Cloudbric Score
?
|
Medium |
Cloudbric Detection | Yes |
Vulnerability Type | SQL Injection |
Published Date | 2020-10-12 |
Updated Date | 2020-11-26 |
Vendor | 1.0 |
Description | The files 「index.php」 on the main login page, and the index.php on the「/admin/ login page 」does not perform input validation on the regno and username parameters. An attacker can send malicious input in the post request to 「http://localhost/index.php」 or either「http://localhost/admin/index.php」 and bypass authentication, extract sensitive information etc. |
Reference | N/A |
URL Link | https://www.exploit-db.com/exploits/48870/ |
This vulnerability has been detected by Cloudbric!
Block NOW!
ID | Description | Vulnerability Type |
Cloudbric Score
?
|
Updated Date | Detection |
---|
To receive weekly updates on new vulnerabilities added to Threat Index
Subscribe Now