| Titel | projectworlds Online Art Gallery Shop Project V1.0 SQL Injection |
|---|
| Beschreibung | A SQL injection vulnerability was found in the ' /?pass=1 ' file of the 'Online Art Gallery Shop Project'. The reason for this issue is that attackers inject malicious code from the parameter ' fnm‘ and use it directly in SQL queries without the need for appropriate cleaning or validation. This allows attackers to forge input values, thereby manipulating SQL queries and performing unauthorized operations. |
|---|
| Quelle | ⚠️ https://github.com/hmKunlun/projectworldcve/issues/1 |
|---|
| Benutzer | kunlun (UID 95866) |
|---|
| Einreichung | 26.02.2026 08:29 (vor 2 Monaten) |
|---|
| Moderieren | 07.03.2026 21:34 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 349735 [projectworlds Online Art Gallery Shop 1.0 /?pass=1 fnm SQL Injection] |
|---|
| Punkte | 20 |
|---|