-
### Vulnerable code:
[Line 62 in staff/edit.php](https://github.com/remoteclinic/RemoteClinic/blob/master/staff/edit.php#L62)
```php
$profile=mysqli_fetch_object(mysqli_query($con, "select * from p…
-
### Preconditions (*)
1. Run Magento with Nginx + Modsecurity with Core OWASP rules enabled Or Run Cloudflare with Managed OWASP rules enabled.
### Steps to reproduce (*)
1. Goto any plac…
-
**SQL_Injection** issue exists @ **root/basket.jsp** in branch **refs/heads/master**
*The application's stmt.executeQuery method executes an SQL query with executeQuery, at line 166 of root\basket.…
-
**SQL_Injection** issue exists @ **root/register.jsp** in branch **refs/heads/master**
*The application's stmt.executeQuery method executes an SQL query with executeQuery, at line 29 of root\regist…
-
**SQL_Injection** issue exists @ **root/login.jsp** in branch **refs/heads/master**
*The application's stmt.executeQuery method executes an SQL query with executeQuery, at line 15 of root\login.jsp…
-
**SQL_Injection** issue exists @ **root/password.jsp** in branch **refs/heads/master**
*The application's stmt.executeQuery method executes an SQL query with executeQuery, at line 24 of root\passwo…
-
**Second_Order_SQL_Injection** issue exists @ **/root/login.jsp** in branch **master**
Severity: high
[Checkmarx](https://cloud.checkmarx.net/scan/business-unit/10040/application/10084/project/1…
-
**SQL_Injection** issue exists @ **WebGoat/Content/ForgotPassword.aspx.cs** in branch **master**
*The application's GetSecurityQuestionAndAnswer method executes an SQL query with da, at line 319 of…
-
**SQL_Injection** issue exists @ **WebGoat/Content/SQLInjection.aspx.cs** in branch **master**
*The application's GetEmailByName method executes an SQL query with da, at line 515 of WebGoat\App_Cod…
-
**SQL_Injection** issue exists @ **WebGoat/Content/SQLInjectionDiscovery.aspx.cs** in branch **master**
*The application's GetEmailByCustomerNumber method executes an SQL query with cmd, at line 49…