Skip to content

SQL INJECT in url /controller/api/RandomHotel.php #11

New issue
New issue
Open
Open
SQL INJECT in url /controller/api/RandomHotel.php#11
@sususukkk

Description

@sususukkk
sususukkk
opened on Oct 31, 2019

exists sql inject in /controller/api/RandomHotel.php
sqlmap -u "http://10.211.55.10/controller/api/RandomHotel.php?key=TheHotelReversationApplication&city=1"
image

author:kejie.chen@dbappsecurity.com.cn

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions