| Titel | code-projects Online Product Reservation System V1.0 SQL Injection |
|---|
| Beschreibung | A critical SQL injection vulnerability exists in the user registration functionality. The application directly concatenates multiple POST parameters into SQL INSERT query without validation, allowing attackers to extract database data and manipulate user registration. |
|---|
| Quelle | ⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_register_code.php.md |
|---|
| Benutzer | Ho Cherry (UID 94105) |
|---|
| Einreichung | 03.01.2026 17:41 (vor 3 Monaten) |
|---|
| Moderieren | 04.01.2026 19:06 (1 day later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 339502 [code-projects Online Product Reservation System 1.0 User Registration register_code.php SQL Injection] |
|---|
| Punkte | 17 |
|---|