제출 #257029: 7-card Fakabao ≤v1.0_build20230805 SQL Injection정보

제목7-card Fakabao ≤v1.0_build20230805 SQL Injection
설명An SQL injection vulnerability has been detected in the '7-card Fakabao' software, version ≤v1.0_build20230805. The affected file is 'shop/notify.php'. The vulnerability allows an attacker to manipulate the 'out_trade_no' parameter to inject SQL commands into the database query directly.
원천⚠️ https://note.zhaoj.in/share/Jo8N3eSeLx9c
사용자
 glzjin (UID 59815)
제출2023. 12. 22. PM 04:41 (3 연령 ago)
모더레이션2023. 12. 30. PM 05:38 (8 days later)
상태수락
VulDB 항목249386 [7-card Fakabao 까지 1.0_build20230805 shop/notify.php out_trade_no SQL 주입]
포인트들18

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!