| Título | geeeeeeeek dingfanzu master SQL Injection |
|---|
| Descrição | dingfanzu-CMS loadShopInfo.php shopId SQL inject
THis is a food delivery website based on php, including front end and back end
dingfanzu MS does not filter the content correctly at the "loadShopInfo.php" shopId parameter, resulting in the generation of SQL injection.
For details, please see the github document:
https://github.com/XinCaoZ/cve/blob/main/dingfanzu/dingfanzu-CMS%20loadShopInfo.php%20shopId%20SQL%20inject.md
|
|---|
| Fonte | ⚠️ https://github.com/XinCaoZ/cve/blob/main/dingfanzu/dingfanzu-CMS%20loadShopInfo.php%20shopId%20SQL%20inject.md |
|---|
| Utilizador | Xinca0 (UID 43189) |
|---|
| Submissão | 10/02/2025 07h30 (há 1 Ano) |
|---|
| Moderação | 21/02/2025 10h53 (11 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 296490 [dingfanzu CMS até 20250210 /ajax/loadShopInfo.php shopId Injeção SQL] |
|---|
| Pontos | 20 |
|---|