Submit #335343: SourceCodester SourceCodester Simple Online Bidding System 1.0 SQL injectioninfo

TitleSourceCodester SourceCodester Simple Online Bidding System 1.0 SQL injection
DescriptionSQL injection vulnerability exists in the Sourcecodester Simple Online Bidding System.The route is /simple-online-bidding-system/index.php?page=view_prod&id=1.The parameter $_Get['id'] here is directly spliced into the SQL statement after removing the null value. There is a SQL injection point.
Source⚠️ https://github.com/rockersiyuan/CVE/blob/main/SourceCodester%20Simple%20Online%20Bidding%20System%20Sql%20Inject-1.md
Userrocker (ID 62454)
Submission05/15/2024 08:46 AM (30 days ago)
Moderation05/15/2024 02:23 PM (6 hours later)
StatusAccepted
VulDB Entry264466

Interested in the pricing of exploits?

See the underground prices here!