Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL Injection in MegaBIP
Vulnerability Description
SQL Injection vulnerability in parameter "w" in file "druk.php" in MegaBIP software allows unauthorized attacker to disclose the contents of the database and obtain administrator's token to modify the content of pages. This issue affects MegaBIP software versions through 5.13.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
MegaBIP 安全漏洞
Vulnerability Description
MegaBIP是一个用于创建BIP网站的软件。 MegaBIP 5.13及之前版本存在安全漏洞,该漏洞源于参数中存在SQL注入漏洞,允许未经授权的攻击者泄露数据库内容并获取管理员令牌来修改页面内容。
CVSS Information
N/A
Vulnerability Type
N/A