Gửi #768042: SourceCodester Inventory System 1.0 SQL Injectionthông tin

tiêu đềSourceCodester Inventory System 1.0 SQL Injection
Mô tảA SQL injection vulnerability exists in SourceCodester Inventory System 1.0. The flaw is located in the file check_item_details.php. By manipulating the POST parameter 'stock_name1', an authenticated attacker can perform UNION-based, boolean-based, or time-based SQL injection. This allows for the direct extraction of database records through the application interface.
Nguồn⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/SQLi-CheckItemDetails-stockname1.md
Người dùng
 Anonymous User
Đệ trình26/02/2026 07:19 (cách đây 5 các tháng)
Kiểm duyệt07/03/2026 21:30 (10 days later)
Trạng tháiđược chấp nhận
Mục VulDB349734 [SourceCodester Sales and Inventory System đến 1.0 /check_item_details.php stock_name1 Tiêm SQL]
điểm19

Want to stay up to date on a daily basis?

Enable the mail alert feature now!