| 제목 | SourceCodester Pizzafy Ecommerce System 1.0 SQL Injection |
|---|
| 설명 | Title: Pizzafy Ecommerce System 1.0
Vulnerability Type: SQL Injection (Based Error)
Severity: HIGH
Status: Unpatched
Description:
A Error-based SQL Injection vulnerability was discovered in the SELECT functionality of the Pizzafy Ecommerce System. This vulnerability occurs because the id parameter and user_id column database is not properly sanitized, allowing an attacker to inject malicious SQL commands into the backend database query.
Affected Version: 1.0
Endpoint or paramter vulnerable:
/pizza/admin/ajax.php?action=get_cart_count&id=1
PoC:
/pizza/admin/ajax.php?action=get_cart_count&id=1%20and%20extractvalue(1,%20concat(0x7e,%20version()))%20--
References:
https://www.sourcecodester.com/php/18708/pizzafy-ecommerce-system.html |
|---|
| 원천 | ⚠️ https://github.com/fernando-mengali/vulndb-submissions/blob/main/05-vul-SQLI.md |
|---|
| 사용자 | Fernando Mengali (UID 83791) |
|---|
| 제출 | 2026. 04. 10. PM 08:46 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 04. 27. PM 05:43 (17 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 359828 [SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=get_cart_count 아이디 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|