| Titel | https://www.jiujiujia.net/ PHP-based Three-Dot Ordering System Vulnerable to SQL Injection lasest SQL Injection |
|---|
| Beschreibung | The three-hook ordering system is a mini-program mall built
based on thinkphp8+element-plus+uniapp, designed for
developers to facilitate secondary development or direct
use. It can be published on multiple platforms, including
WeChat Mini Programs, WeChat Official Accounts, QQ Mini
Programs, Alipay Mini Programs, ByteDance Mini Programs,
Baidu Mini Programs, Android, and iOS. In terms of
implementation, a certain interface of the system directly
concatenates user input into SQL query statements, allowing
attackers to exploit this vulnerability to obtain sensitive
database information. |
|---|
| Quelle | ⚠️ http://x.x.x.x:38765/qwertyuiop/qwsdfvbnm/1/vuldb/JJJshop/EnglishVers%E4%B8%89%E5%8B%BE%E7%82%B9%E9%A4%90%E7%B3%BB%E7%BB%9FPHP%E7%89%88%E5%AD%98%E5%9C%A8product.category.indexSQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E.pdf |
|---|
| Benutzer | BadKitty (UID 90804) |
|---|
| Einreichung | 03.01.2026 08:21 (vor 5 Monaten) |
|---|
| Moderieren | 10.01.2026 11:02 (7 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 340443 [jiujiujia/victor123/wxw850227 jjjfood/jjjshop_food bis 20260103 index latitude SQL Injection] |
|---|
| Punkte | 20 |
|---|