| शीर्षक | Shopping Website (E Commerce) check_availability.php has Sqlinjection |
|---|
| विवरण | A SQL injection vulnerability exists in the Shopping Website (E-Commerce) check_availability.php The basic introduction of the vulnerability is that SQL injection means that the web application does not strictly judge or filter the validity of user input data.
The vulnerable website and component mentioned is SourceCodester Shopping Website 1.0 (https://vuldb.com/?product.sourcecodester:shopping_website).
An attacker can add additional SQL statements to the end of a predefined query statement in a web application, and perform illegal operations without the knowledge of the administrator. In this way, the database server can be tricked into performing any unauthorized query and obtaining the corresponding data information. |
|---|
| स्रोत | ⚠️ https://github.com/DUA0G/cve/blob/main/1.pdf |
|---|
| उपयोगकर्ता | DUA0G (UID 50096) |
|---|
| सबमिशन | 06/07/2023 12:55 PM (3 साल पहले) |
|---|
| संयम | 07/07/2023 01:51 PM (1 day later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 233286 [SourceCodester Shopping Website 1.0 check_availability.php email SQL इंजेक्शन] |
|---|
| अंक | 20 |
|---|