Submeter #731091: code-projects Online Product Reservation system V1.0 SQL Injectioninformação

Títulocode-projects Online Product Reservation system V1.0 SQL Injection
DescriçãoA critical SQL injection vulnerability exists in the product editing functionality. The application directly concatenates user input from both GET and POST parameters into SQL queries without validation, allowing attackers to extract sensitive database data and modify product information.
Fonte⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_admin_edit.php.md
Utilizador
 Ho Cherry (UID 94105)
Submissão03/01/2026 12h13 (há 5 meses)
Moderação03/01/2026 17h02 (5 hours later)
EstadoAceite
Entrada VulDB339463 [code-projects Online Product Reservation System 1.0 POST Parameter edit.php prod_id/name/price/model/serial Injeção SQL]
Pontos17

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!