Gửi #768045: SourceCodester Inventory System 1.0 SQL Injectionthông tin

tiêu đềSourceCodester Inventory System 1.0 SQL Injection
Mô tảA SQL injection vulnerability exists in SourceCodester Inventory System 1.0. The affected component is the file check_supplier_details.php. By manipulating the POST parameter 'stock_name1', an authenticated attacker can perform UNION-based, boolean-based, or time-based SQL injection. This facilitates the direct exfiltration of database records.
Nguồn⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/SQLi-CheckSupplierDetails-stockname1.md
Người dùng
 Anonymous User
Đệ trình26/02/2026 07:20 (cách đây 5 các tháng)
Kiểm duyệt08/03/2026 08:24 (10 days later)
Trạng tháiđược chấp nhận
Mục VulDB349757 [SourceCodester Sales and Inventory System 1.0 POST Parameter check_supplier_details.php stock_name1 Tiêm SQL]
điểm19

Do you need the next level of professionalism?

Upgrade your account now!