Soumettre #731096: code-projects Online Product Reservation system V1.0 SQL Injectioninformation

Titrecode-projects Online Product Reservation system V1.0 SQL Injection
DescriptionA critical SQL injection vulnerability exists in the order viewing functionality. The application directly concatenates GET parameter into SQL query without validation, allowing attackers to extract order information and sensitive customer data.
La source⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_order_view.php.md
Utilisateur
 Ho Cherry (UID 94105)
Soumission03/01/2026 12:23 (il y a 3 mois)
Modérer04/01/2026 08:01 (20 hours later)
StatutAccepté
Entrée VulDB339477 [code-projects Online Product Reservation System 1.0 GET Parameter /order_view.php transaction_id injection SQL]
Points17

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!