Sql-inj in https://maximum.com/ajax/people

Disclosed: 2019-07-12 12:13:44 By tohasec To radancy
Unknown
Vulnerability Details
Hi Sql-inj in param ``order`` in https://maximum.com/ajax/people?order[]=email1&order[]=ASC&page=1
Actions
View on HackerOne
Report Stats
  • Report ID: 94584
  • State: Closed
  • Substate: resolved
  • Upvotes: 30
Share this report