vendor:
Global In – A LinkedIn Clone
by:
Ihsan Sencan
7,5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Global In – A LinkedIn Clone
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Win7 x64, Kali Linux x64
2017
Global In – A LinkedIn Clone – SQL Injection
SQL Injection vulnerability exists in Global In – A LinkedIn Clone, which allows an attacker to inject malicious SQL queries to the application. By exploiting this vulnerability, an attacker can gain access to sensitive information such as usernames, passwords, emails, IP addresses, etc. from the database.
Mitigation:
Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.
