إرسال #475159: code-projects Online Book Shop 1.0 SQL Injectionالمعلومات

عنوانcode-projects Online Book Shop 1.0 SQL Injection
الوصفThe SQL Injection vulnerability exists in diretory /process_login.php where this function query the usernm parameter into the SQL statement without any restriction, validation or sanitization. An attacker could exploit this vulnerability to get unauthorized access to the server database, or even perform Remote Code Execution (RCE).
المصدر⚠️ https://gist.github.com/th4s1s/5435e605e6e9f14a5b76c313483eb58a
المستخدم
 lio346 (UID 79690)
ارسال06/01/2025 03:06 AM (1 سنة منذ)
الاعتدال07/01/2025 08:45 AM (1 day later)
الحالةتمت الموافقة
إدخال VulDB290447 [code-projects Online Book Shop 1.0 /process_login.php usernm حقن SQL]
النقاط19

التالي نظرة عامة السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!