제출 #731129: code-projects Online Product Reservation System V1.0 SQL Injection정보

제목code-projects Online Product Reservation System V1.0 SQL Injection
설명A critical SQL injection vulnerability exists in the shopping cart update functionality. The application directly concatenates POST parameters into SQL UPDATE and SELECT queries without validation, allowing attackers to extract cart and product data.
원천⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_checkout_update.php.md
사용자
 Ho Cherry (UID 94105)
제출2026. 01. 03. PM 05:39 (3 개월 ago)
모더레이션2026. 01. 04. PM 07:06 (1 day later)
상태수락
VulDB 항목339501 [code-projects Online Product Reservation System 1.0 Cart Update /app/checkout/update.php id/qty SQL 주입]
포인트들17

이전개요다음

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!