| Título | code-projects Online Product Reservation System V1.0 SQL Injection |
|---|
| Descrição | A critical SQL injection vulnerability exists in the user registration functionality. The application directly concatenates multiple POST parameters into SQL INSERT query without validation, allowing attackers to extract database data and manipulate user registration. |
|---|
| Fonte | ⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_register_code.php.md |
|---|
| Utilizador | Ho Cherry (UID 94105) |
|---|
| Submissão | 03/01/2026 17h41 (há 4 meses) |
|---|
| Moderação | 04/01/2026 19h06 (1 day later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 339502 [code-projects Online Product Reservation System 1.0 User Registration register_code.php Injeção SQL] |
|---|
| Pontos | 17 |
|---|