Skip to content

SQL Injection Vulnerability in /controller/api/RevokeOrder.php #12

New issue
New issue
Open
Open
SQL Injection Vulnerability in /controller/api/RevokeOrder.php#12
@sususukkk

Description

@sususukkk
sususukkk
opened on Oct 31, 2019

SQL Injection exists /controller/api/RevokeOrder.php
sqlmap -u "http://10.211.55.10/controller/api/RevokeOrder.php?key=TheHotelReversationApplication&city=1&orderId=1"
8EF56AAE-BE92-4510-8431-3862C80FD972

author:kejie.chen@dbappsecurity.com.cn

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions