4 matches found
Sql injection
An issue was discovered in LATRIX 0.6.0. SQL injection in the txtaccesscode parameter of inandout.php leads to information disclosure and code execution...
SOURCEFORGE 组织 SOURCEFORGE LATRIX SQL注入漏洞
SOURCEFORGE LATRIX is an open source application from the SOURCEFORGE organization. It provides presence and attendance records, attendance tracking, paperless leave requests with freely definable leave types, downtime, fire registration and extensive reporting options. LATRIX version 0.6.0 suffe...
Latrix 0.6.0 - (txtaccesscode) SQL Injection Vulnerability
Exploit Title: Latrix 0.6.0 – 'txtaccesscode' SQL Injection Exploit Author: cptsticky Vendor Homepage: https://sourceforge.net/projects/latrix Software Link: https://sourceforge.net/projects/latrix/files/latest/download Version: 0.6.0 Tested on: Ubuntu 20.04 POST /latrix/inandout.php HTTP/1.1 Hos...
Latrix 0.6.0 - 'txtaccesscode' SQL Injection
Exploit Title: Latrix 0.6.0 – 'txtaccesscode' SQL Injection Date: 03/30/2021 Exploit Author: cptsticky Vendor Homepage: https://sourceforge.net/projects/latrix Software Link: https://sourceforge.net/projects/latrix/files/latest/download Version: 0.6.0 Tested on: Ubuntu 20.04 POST...