Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
saemorris TheRadSystem _login.php redirect sql injection
Vulnerability Description
A vulnerability was found in saemorris TheRadSystem and classified as critical. This issue affects the function redirect of the file _login.php. The manipulation of the argument user/pass leads to sql injection. The attack may be initiated remotely. The identifier of the patch is bfba26bd34af31648a11af35a0bb66f1948752a6. It is recommended to apply a patch to fix this issue. The identifier VDB-218453 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
TheRadSystem SQL注入漏洞
Vulnerability Description
TheRadSystem是saemorris个人开发者的一个 Cmput 391 项目。 TheRadSystem存在SQL注入漏洞,该漏洞源于对参数user/pass的错误操作导致sql注入。
CVSS Information
N/A
Vulnerability Type
N/A