Soumettre #521162: Micro-mall vulnerabilities windows 1.0 SQL injectioninformation

TitreMicro-mall vulnerabilities windows 1.0 SQL injection
DescriptionFind the source code from GitHub and start a source code audit. SQL injection The following code as shown in the figure was found in api/data.php. $search = isset($_GET['search']) ? $_GET['search'] :0; $sql = "M_id='{$mao['id']}' and name LIKE '%{$search}%'"; The SQL injection was successfully carried out using sqlmap.
La source⚠️ https://www.jianshu.com/p/22d3ae38e628?v=1742101731758
Utilisateur
 leizi (UID 82832)
Soumission16/03/2025 06:26 (il y a 1 Année)
Modérer29/03/2025 20:33 (14 days later)
StatutAccepté
Entrée VulDB302004 [Bluestar Micro Mall 1.0 /api/data.php Recherche injection SQL]
Points19

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!