| Titre | code-projects farmacia-in-php v1.0 SQL Injection |
|---|
| Description | In the visualizar-produto.php file of farmacia-in-php, the id parameter is obtained, and the SQL statement is concatenated to the SQL statement without filtering the execution, resulting in SQL injection vulnerabilities and server permissions |
|---|
| La source | ⚠️ https://github.com/LamentXU123/cve/blob/main/cve-l.md |
|---|
| Utilisateur | LamentXU (UID 78142) |
|---|
| Soumission | 01/12/2024 06:00 (il y a 2 ans) |
|---|
| Modérer | 01/12/2024 12:21 (6 hours later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 286491 [code-projects Farmacia 1.0 /visualizar-produto.php ID injection SQL] |
|---|
| Points | 16 |
|---|