#3755 - Security Issue - SQL Injection
| Identifier | #3755 |
|---|---|
| Issue type | Major issue (breaks an entire feature) |
| Title | Security Issue - SQL Injection |
| Status | Closed (duplicate) |
| Handling member | Chris Graham |
| Addon | search |
| Description | SQL Injection is high security vulnerability which allows an attacker to extract the enter database of the application without authentication. It is very critical as an attacker can insert a shell and compromise the entire webserver to perform malicious activities |
| Steps to reproduce | Step1: Visit the below link: https://compo.sr/ Step2: Go to search field enter the malicious sql queries as shown in url https://compo.sr/search.htm?search_tutorials_external=1&search_comcode_pages=1&days=-1&all_defaults=0&content=hello"+OR+1%3D1-- Step3: It throws an sql error which can be fixed easily an attacker to steal the data from the database |
| Additional information | Upon fixing the vulnerability, kindly send me an update on the below mail id to re-check it
n0tak1dd13 at gmaildotcom |
| Related to | |
| Funded? | No |
The system will post a comment when this issue is modified (e.g., status changes). To be notified of this, click "Enable comment notifications".
Comments
(Click to enlarge)