| 제목 | code-projects Responsive Hotel Site v1.0 SQL Injection |
|---|
| 설명 | Due to the lack of purification or parameterization of PID parameters, attackers can inject malicious SQL code to manipulate database queries. By utilizing the SQL injection technique of UNION query, attackers can use functions such as UNION to directly query the fields required by the database. This can be used to confirm the existence of vulnerabilities and potentially extract sensitive information from the database. |
|---|
| 원천 | ⚠️ https://github.com/Huandtx/cve/blob/main/cve/Responsive%20Hotel%20Site/sql1.md |
|---|
| 사용자 | huandtx (UID 79079) |
|---|
| 제출 | 2025. 01. 04. AM 08:48 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 01. 04. PM 08:47 (12 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 290226 [code-projects Responsive Hotel Site 1.0 /admin/print.php pid SQL 주입] |
|---|
| 포인트들 | 19 |
|---|