从截图中可以获取到以下关于漏洞的关键信息: CVE编号:CVE-2022-30510 漏洞类型:Unauthenticated SQL Injection 影响软件:School Dormitory Management System 1.0 发布日期:2022-05-25 漏洞作者:AbdulazizSaad (@b4zb0z) 软件链接:https://www.sourcecodester.com/php/15319/school-dormitory-management-system-phpoop-free-source-code.html 测试环境:LAMP, Ubuntu 漏洞位置: in /dms/admin/reports/daily_collection_report.php:59 漏洞类型及攻击向量: - Boolean-based blind SQL injection - Error-based SQL injection - Time-based blind SQL injection - Union query injection 攻击Payload示例: - Boolean-based blind: - Error-based: - Time-based blind: - Union query: 利用工具:可以使用SQLMAP进行漏洞利用,示例命令为