Soumettre #731091: code-projects Online Product Reservation system V1.0 SQL Injectioninformation

Titrecode-projects Online Product Reservation system V1.0 SQL Injection
DescriptionA critical SQL injection vulnerability exists in the product editing functionality. The application directly concatenates user input from both GET and POST parameters into SQL queries without validation, allowing attackers to extract sensitive database data and modify product information.
La source⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_admin_edit.php.md
Utilisateur
 Ho Cherry (UID 94105)
Soumission03/01/2026 12:13 (il y a 5 mois)
Modérer03/01/2026 17:02 (5 hours later)
StatutAccepté
Entrée VulDB339463 [code-projects Online Product Reservation System 1.0 POST Parameter edit.php prod_id/name/price/model/serial injection SQL]
Points17

PrécédentAperçuSuivant

Do you know our Splunk app?

Download it now for free!