Отправить #475285: code-projects Online Book Shop 1.0 SQL InjectionИнформация

Названиеcode-projects Online Book Shop 1.0 SQL Injection
ОписаниеThe SQL Injection vulnerability exists in diretory /search_result.php where this function query the s parameter into the SQL statement without any restriction, validation or sanitization. An attacker could exploit this vulnerability to get unauthorized access to the server database, or even perform Remote Code Execution (RCE).
Источник⚠️ https://gist.github.com/th4s1s/b30a06e83b98ddcbc69b9038c145d8cd
Пользователь
 lio346 (UID 79690)
Представление06.01.2025 09:38 (1 Год назад)
Модерация07.01.2025 08:51 (23 hours later)
Статуспринято
Запись VulDB290448 [code-projects Online Book Shop 1.0 /search_result.php SQL-инъекция]
Баллы19

ПредыдущийОбзорДалее

Want to stay up to date on a daily basis?

Enable the mail alert feature now!