제출 #831321: SourceCodester Pizzafy E-Commerce System 1.0 SQL injection정보

제목SourceCodester Pizzafy E-Commerce System 1.0 SQL injection
설명During the security review of Pizzafy E-Commerce System v1.0, a critical SQL injection vulnerability was discovered in the administrator authentication mechanism. This vulnerability stems from insufficient user input validation of the `username` parameter in the login form, allowing attackers to inject malicious SQL queries. Since this is the gateway to the administrative control panel and requires no prior authentication, exploitation is trivial for any remote attacker.
원천⚠️ https://github.com/nuiifornet/A033/blob/main/pizzafy-vulnerability.md
사용자
 Fklov (UID 98102)
제출2026. 05. 16. AM 04:03 (24 날 ago)
모더레이션2026. 06. 02. PM 07:44 (18 days later)
상태수락
VulDB 항목368017 [SourceCodester Pizzafy E-Commerce System 1.0 Administrative Control Panel admin_class_novo.php login 사용자 이름 SQL 주입]
포인트들20

이전개요다음

Might our Artificial Intelligence support you?

Check our Alexa App!