| 제목 | Online Computer and Laptop Store SQL injection exists at the location where the brand list is added |
|---|
| 설명 | This project is entitled Online Computer and Laptop Store. This web application was developed to provide an online platform for a certain computer store or business possible customers for exploring and ordering the products.Version number: v1.0
Source code online address:https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
In the backend management, there is brand list management, whose main function is to set brand details in the system. But what's different is that when it stores, it does not verify the details of user input content. When there are malicious users, SQL statements can be arbitrarily concatenated to achieve SQL injection vulnerabilities! |
|---|
| 원천 | ⚠️ https://github.com/boyi0508/Online-Computer-and-Laptop-Store/blob/main/1-SQL%20injection%20exists%20at%20the%20location%20where%20the%20brand%20list%20is%20added.pdf |
|---|
| 사용자 | ddea (UID 38989) |
|---|
| 제출 | 2023. 04. 11. PM 05:12 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 04. 11. PM 06:40 (1 hour later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 225533 [SourceCodester Online Computer and Laptop Store 1.0 Master.php?f=save_brand 이름 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|