Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in index.php in Dreamlevels DreamPoll 3.1 allow remote attackers to execute arbitrary SQL commands via the (1) sortField, (2) sortDesc, or (3) pageNumber parameter in a login action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dreamlevels DreamPoll 'index.php'多个SQL注入漏洞
Vulnerability Description
Dreamlevels DreamPoll的脚本index.php存在多个SQL注入漏洞。远程攻击者可以借助login功能中的sortField、sortDesc、或者pageNumber参数,执行任意的SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A