提出 #844101: RafyMrX TOKO-ONLINE-ROTI latest (2026-05, no formal release) SQL Injection情報

タイトルRafyMrX TOKO-ONLINE-ROTI latest (2026-05, no formal release) SQL Injection
説明Description: TOKO-ONLINE-ROTI contains multiple unauthenticated SQL injection vulnerabilities in the login, cart, order management, and product management functions. Vuln 1 - Login bypass (proses/login.php): $username = $_POST['username']; $cek = mysqli_query($conn, "SELECT * FROM customer where username = '$username'"); No escaping or prepared statement. Login bypass with: admin' OR '1'='1'-- Vuln 2 - Cart injection (proses/add.php): $_GET['kode_produk'], $_GET['kd_cs'] directly in SQL queries SELECT/INSERT/UPDATE without any sanitization. Vuln 3 - Order accept injection (admin/proses/terima.php): $inv = $_GET['inv']; $result = mysqli_query($conn, "SELECT * from produksi where invoice = '$inv'"); No authentication check before executing this query. Vuln 4 - Eight admin functions without authentication (CWE-306): del_produk.php, edit_inv.php, tambah_inv.php, tm_produk.php, terima.php, tolak.php, hapus_inv.php — all lack session validation. An attacker can delete products, modify inventory, and accept/reject orders without logging in. Countermeasure: Use prepared statements with parameter binding. Add session authentication checks to all admin/proses/ files before executing database operations.
ソース⚠️ https://github.com/RafyMrX/TOKO-ONLINE-ROTI
ユーザー
 Lzy200657 (UID 98649)
送信2026年05月31日 07:58 (1 月 ago)
モデレーション2026年07月11日 13:55 (1 month later)
ステータス承諾済み
VulDBエントリ377796 [RafyMrX TOKO-ONLINE-ROTI 迄 ddfe1cd587be0a0b5135d8b6e85cce2ec3aece99 proses/login.php ユーザー名 SQLインジェクション]
ポイント20

Do you know our Splunk app?

Download it now for free!