Web Vulnerability Report
| ID | EDB-ID-48870 |
| CVSS 3.0 | N/A |
|
Cloudbric Score
?
|
Medium |
| Cloudbric Detection | Yes |
| Vulnerability Type | SQL Injection |
| Published Date | 2020-10-12 |
| Updated Date | 2020-11-26 |
| Vendor | 1.0 |
| Description | The files 「index.php」 on the main login page, and the index.php on the「/admin/ login page 」does not perform input validation on the regno and username parameters. An attacker can send malicious input in the post request to 「http://localhost/index.php」 or either「http://localhost/admin/index.php」 and bypass authentication, extract sensitive information etc. |
| Reference | N/A |
| URL Link | https://www.exploit-db.com/exploits/48870/ |
This vulnerability has been detected by Cloudbric!
Block NOW!
| ID | Description | Vulnerability Type |
Cloudbric Score
?
|
Updated Date | Detection |
|---|
To receive weekly updates on new vulnerabilities added to Threat Index
Subscribe Now