Отправить #775173: SourceCodester Sales and Inventory System 1.0 SQL InjectionИнформация

НазваниеSourceCodester Sales and Inventory System 1.0 SQL Injection
ОписаниеA SQL injection vulnerability exists in Inventory System version 1.0. The vulnerability occurs in the update_out_standing.php file, where the sid HTTP GET parameter is not properly sanitized. This allows an authenticated attacker to inject arbitrary SQL commands.
Источник⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/SQLi-UpdateOutStanding-sid.md
Пользователь
 Anonymous User
Представление08.03.2026 15:31 (29 дни назад)
Модерация24.03.2026 16:11 (16 days later)
Статуспринято
Запись VulDB352798 [SourceCodester Sales and Inventory System 1.0 HTTP GET Parameter update_out_standing.php sid SQL-инъекция]
Баллы18

ПредыдущийОбзорДалее

Interested in the pricing of exploits?

See the underground prices here!