제출 #366239: Hitout carsale V1.0 SQL Injection정보

제목Hitout carsale V1.0 SQL Injection
설명SQL injection vulnerability in Hitout litemall v.1.0 allows a remote attacker to obtain sensitive information via the orderBy parameters of the OrderController.java component.
원천⚠️ https://github.com/Hitout/carsale/issues/23
사용자
 Tmac (UID 71244)
제출2024. 06. 29. AM 04:58 (2 연령 ago)
모더레이션2024. 07. 02. AM 06:52 (3 days later)
상태수락
VulDB 항목270166 [Hitout Carsale 1.0 OrderController.java orderBy SQL 주입]
포인트들15

이전개요다음

Do you need the next level of professionalism?

Upgrade your account now!