Submeter #731096: code-projects Online Product Reservation system V1.0 SQL Injectioninformação

Títulocode-projects Online Product Reservation system V1.0 SQL Injection
DescriçãoA critical SQL injection vulnerability exists in the order viewing functionality. The application directly concatenates GET parameter into SQL query without validation, allowing attackers to extract order information and sensitive customer data.
Fonte⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_order_view.php.md
Utilizador
 Ho Cherry (UID 94105)
Submissão03/01/2026 12h23 (há 3 meses)
Moderação04/01/2026 08h01 (20 hours later)
EstadoAceite
Entrada VulDB339477 [code-projects Online Product Reservation System 1.0 GET Parameter /order_view.php transaction_id Injeção SQL]
Pontos17

VoltarVisão GeralPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!