| 제목 | CodeAstro Online Food Ordering System 1.0 SQL Injection |
|---|
| 설명 | Vendor and Product Information:
Vendor: CodeAstro
Product: Online Food Ordering System
Product URL: https://codeastro.com/online-food-ordering-system-in-php-mysql-with-source-code/
Confidence: Confirmed
Description:
An SQL injection vulnerability in the "Update User" page can be chained to execute arbitrary code remotely on the server. This could allow attackers to access sensitive data, disrupt services, and compromise the overall availability of the system. |
|---|
| 원천 | ⚠️ https://github.com/shaturo1337/POCs/blob/main/RCE%20via%20SQL%20Injection%20in%20Online%20Food%20Ordering%20System.md |
|---|
| 사용자 | John Correche (UID 79510) |
|---|
| 제출 | 2024. 12. 30. AM 11:18 (1 년도 ago) |
|---|
| 모더레이션 | 2024. 12. 31. AM 09:42 (22 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 289825 [CodeAstro Online Food Ordering System 1.0 Update User Page /admin/update_users.php user_upd SQL 주입] |
|---|
| 포인트들 | 20 |
|---|