6 matches found
Jorjweb "id" SQL注入漏洞
Jorjweb是一款基于WEB的应用。 Jorjweb ajedrez47/Paginas/infotorneo.php不正确过滤用户提交给"id"参数的数据,允许远程攻击者利用漏洞提交特殊的SQL查询,可操作或获取数据库数据。 0 Jorjweb 目前没有详细解决方案提供: http://www.jorjweb.com/ PoC: http://jorjweb.localhost:8080/ajedrez47/Paginas/infotorneo.php?id=REMOTE SQL-INJECTION WEB VULNERABILITY!-- Demo Urls:...
JORJWEB Ltda SQL Injection
Document Title: =============== JORJWEB Ltda all versions - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1212 Release Date: ============= 2014-02-21 Vulnerability Laboratory ID VL-ID: ==================================== 12...
JORJWEB Ltda (all versions) - SQL Injection Vulnerability
Document Title: =============== JORJWEB Ltda all versions - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1212 Release Date: ============= 2014-02-21 Vulnerability Laboratory ID VL-ID: ==================================== 12...
JORJWEB Ltda (all versions) - SQL Injection Vulnerability
Document Title: =============== JORJWEB Ltda all versions - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1212 Release Date: ============= 2014-02-21 Vulnerability Laboratory ID VL-ID: ==================================== 12...
Jorjweb - id SQL Injection
Jorjweb - id SQL Injection source: https://www.securityfocus.com/bid/66377/info Jorjweb is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the applicatio...
Jorjweb - 'id' SQL Injection
source: https://www.securityfocus.com/bid/66377/info Jorjweb is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or modify data, o...