| Title | PHP-Guitar-Shop web 1 SQL Injection |
|---|
| Description | A vulnerability classified as critical was found in PHP-Guitar-Shop. This affects the file /product.php of the component Product Details Page. The manipulation of the parameter id leads to SQL injection. It is possible to initiate the attack remotely without authentication. The exploit allows unauthorized database access and information disclosure. The exploit has been disclosed to the public and may be used. |
|---|
| Source | ⚠️ https://github.com/appaxv/report/blob/main/guitarshopsql.docx |
|---|
| User | shijia (UID 92679) |
|---|
| Submission | 11/17/2025 06:37 (5 months ago) |
|---|
| Moderation | 12/05/2025 09:50 (18 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 334481 [TrippWasTaken PHP-Guitar-Shop up to 6ce0868889617c1975982aae6df8e49555d0d555 Product Details Page /product.php ID sql injection] |
|---|
| Points | 20 |
|---|