Отправить #475286: code-projects Online Book Shop 1.0 SQL InjectionИнформация

Названиеcode-projects Online Book Shop 1.0 SQL Injection
ОписаниеThe SQL Injection vulnerability exists in diretory /subcat.php where this function query the cat parameter into the SQL statement without any restriction, validation or sanitization. An attacker could exploit this vulnerability to get unauthorized access to the server database, or even perform Remote Code Execution (RCE).
Источник⚠️ https://gist.github.com/th4s1s/21abb650b4b70fe8392d8449445703f7
Пользователь
 lio346 (UID 79690)
Представление06.01.2025 09:52 (1 Год назад)
Модерация07.01.2025 08:51 (23 hours later)
Статуспринято
Запись VulDB290449 [code-projects Online Book Shop 1.0 /subcat.php cat SQL-инъекция]
Баллы18

ПредыдущийОбзорДалее

Want to stay up to date on a daily basis?

Enable the mail alert feature now!