Skip to content

Latest commit

 

History

History

Simple ChatBot

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
 
 
 
 
 
 

Description:

An SQL Injection vulnerability exists in Sourcecodester Simple Chatbot Application 1.0 via the message parameter in Master.php. The parameter username is was not sanitized correctly. The attacker can take control of the system administrator account.

Status: CRITICAL

  • In Action

  • XSS-PHPSESSID-Hijacking

  • SQL - Bypass Authentication:

href