Submeter #521162: Micro-mall vulnerabilities windows 1.0 SQL injectioninformação

TítuloMicro-mall vulnerabilities windows 1.0 SQL injection
DescriçãoFind the source code from GitHub and start a source code audit. SQL injection The following code as shown in the figure was found in api/data.php. $search = isset($_GET['search']) ? $_GET['search'] :0; $sql = "M_id='{$mao['id']}' and name LIKE '%{$search}%'"; The SQL injection was successfully carried out using sqlmap.
Fonte⚠️ https://www.jianshu.com/p/22d3ae38e628?v=1742101731758
Utilizador
 leizi (UID 82832)
Submissão16/03/2025 06h26 (há 1 Ano)
Moderação29/03/2025 20h33 (14 days later)
EstadoAceite
Entrada VulDB302004 [Bluestar Micro Mall 1.0 /api/data.php Pesquisa Injeção SQL]
Pontos19

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!