Visitor Management System in PHP 1.0 - Authenticated SQL Injection

Posted by Ava Tester One on Sep 22

# Title: Visitor Management System in PHP 1.0 – Authenticated SQL Injection
# Exploit Author: Rahul Ramkumar
# Date: 2020-09-16
# Vendor Homepage: https://projectworlds.in
# Software Link:
https://projectworlds.in/wp-content/uploads/2020/07/Visitor-Management-System-in-PHP.zip
# Version: 1.0
# Tested On: Windows 10 Enterprise 1809 (x64_86) + XAMPP 7.2.33-1
# CVE: CVE-2020-25760
# Description
The file front.php does not perform input validation on…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Original Source

Tags: cyber, exploit, full disclosure, OSINT, seclist, Security, threatintel, vulnerabilities, vulnerability, vulns

Visitor Management System in PHP 1.0 – Authenticated SQL Injection

Original Source

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: Oracle Releases Critical Patch Update Advisory for April 2024

Black Basta Ransomware Victim: doyon[.]com | doyondrilling[.]com

Akira Ransomware Victim: Serfilco, RP Adams, Baron Blakeslee, Pac er, Service Filtrati on of Canada, Polyma r[.]

Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters

Original Source

You may have missed

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: Oracle Releases Critical Patch Update Advisory for April 2024

Black Basta Ransomware Victim: doyon[.]com | doyondrilling[.]com

Akira Ransomware Victim: Serfilco, RP Adams, Baron Blakeslee, Pac er, Service Filtrati on of Canada, Polyma r[.]

Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters