:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Xinet Elegant 6 Asset Library Web Interface 6.1.655 SQL Injection

deepcoreDec 1, 2019

NAPC Xinet (interface) Elegant 6 Asset Library version 6.1.655 allows pre-authentication error-based SQL injection via the /elegant6/login LoginForm[username] field when double quotes are used.

You must be logged in to post a comment.

Related Posts

Chitor CMS 1.1.2 SQL Injection

Multi-Vendor Online Groceries Management System 1.0 Remote Code Execution

Telit Cinterion IoT Traversal / Escalation / Bypass / Heap Overflow

Leave a Reply