| 제목 | Online Computer and Laptop Store v1.0 SQL injection present at product update |
|---|
| 설명 | This project is entitled Online Computer and Laptop Store. This web application was developed to provide an online platform for a certain computer store or business possible customers for exploring and ordering the products.Version number: v1.0
Source code online address:https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
In the backend management page, there is a product update function, in which product updates can be made based on user input. But there is SQL injection here; Because filtering and verification were not performed when receiving time parameters. Execute directly in SQL statements. |
|---|
| 원천 | ⚠️ https://github.com/boyi0508/Online-Computer-and-Laptop-Store/blob/main/SQL%20injection%20present%20at%20product%20update.pdf |
|---|
| 사용자 | haicheng.zhang (UID 38987) |
|---|
| 제출 | 2023. 04. 08. AM 05:14 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 04. 08. AM 08:30 (3 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 225341 [SourceCodester Online Computer and Laptop Store 1.0 manage.php save_inventory 아이디 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|