إرسال #731096: code-projects Online Product Reservation system V1.0 SQL Injectionالمعلومات

عنوانcode-projects Online Product Reservation system V1.0 SQL Injection
الوصفA critical SQL injection vulnerability exists in the order viewing functionality. The application directly concatenates GET parameter into SQL query without validation, allowing attackers to extract order information and sensitive customer data.
المصدر⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_order_view.php.md
المستخدم
 Ho Cherry (UID 94105)
ارسال03/01/2026 12:23 PM (3 أشهر منذ)
الاعتدال04/01/2026 08:01 AM (20 hours later)
الحالةتمت الموافقة
إدخال VulDB339477 [code-projects Online Product Reservation System 1.0 GET Parameter /order_view.php transaction_id حقن SQL]
النقاط17

التالي نظرة عامة السابق

Might our Artificial Intelligence support you?

Check our Alexa App!