| tiêu đề | projectworlds Online Art Gallery Shop Project V1.0 SQL Injection |
|---|
| Mô tả | A SQL injection vulnerability was found in the ' /?pass=1 ' file of the 'Online Art Gallery Shop Project'. The reason for this issue is that attackers inject malicious code from the parameter ' fnm‘ and use it directly in SQL queries without the need for appropriate cleaning or validation. This allows attackers to forge input values, thereby manipulating SQL queries and performing unauthorized operations. |
|---|
| Nguồn | ⚠️ https://github.com/hmKunlun/projectworldcve/issues/1 |
|---|
| Người dùng | kunlun (UID 95866) |
|---|
| Đệ trình | 26/02/2026 08:29 (cách đây 2 các tháng) |
|---|
| Kiểm duyệt | 07/03/2026 21:34 (10 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 349735 [projectworlds Online Art Gallery Shop 1.0 /?pass=1 fnm Tiêm SQL] |
|---|
| điểm | 20 |
|---|