| タイトル | Online Computer and Laptop Store SQL injection present at subcategory deletion |
|---|
| 説明 | This project is entitled Online Computer and Laptop Store. This web application was developed to provide an online platform for a certain computer store or business possible customers for exploring and ordering the products.Version number: v1.0
Source code online address:https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
In the backend of the system, there is a management function for system subcategories, where the subcategories of the system can be deleted. When deleting, it is done based on the subcategory ID. However, it was not pre compiled. There is also no filtering of user input content, and there is SQL injection. Malicious users can splice SQL statements to cause harm to the platform. |
|---|
| ソース | ⚠️ https://github.com/boyi0508/Online-Computer-and-Laptop-Store/blob/main/SQL%20injection%20present%20at%20subcategory%20deletion.pdf |
|---|
| ユーザー | yanfei.chen (UID 39837) |
|---|
| 送信 | 2023年04月08日 06:15 (3 年 ago) |
|---|
| モデレーション | 2023年04月08日 08:31 (2 hours later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 225345 [SourceCodester Online Computer and Laptop Store 1.0 Master.php?f=delete_sub_category 識別子 SQLインジェクション] |
|---|
| ポイント | 20 |
|---|