| 제목 | code-projects farmacia-in-php v1.0 sql injection |
|---|
| 설명 | This function will execute the notaFiscal parameter without restriction into the sql statement. There are unrestricted sql injection attacks and injection attacks in the farmacia-in-php. The controllable parameters are as follows: notaFiscal parameter. The pagamento.php notaFiscal parameter value is obtained, concatenated into the SQL statement and executed without restrictions, and a malicious attacker can obtain sensitive server information through this SQL injection vulnerability. |
|---|
| 원천 | ⚠️ https://github.com/xiaobai19198/cve/blob/main/sql-cve.md |
|---|
| 사용자 | xiaobai233 (UID 78179) |
|---|
| 제출 | 2024. 11. 27. AM 05:03 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 11. 28. AM 10:19 (1 day later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 286351 [code-projects Farmacia 까지 1.0 pagamento.php notaFiscal SQL 주입] |
|---|
| 포인트들 | 20 |
|---|