提交 #295330: codeastro Ecommerce Site 1 SQL Injection
| 标题 | codeastro Ecommerce Site 1 SQL Injection |
|---|---|
| 描述 | Vendor: https://codeastro.com/ Software: https://codeastro.com/ecommerce-site-in-php-with-source-code/ Take a look at action.php, the param was connected to the SQL query directly.It's not filtered or checked |
| 来源 | ⚠️ https:/ |
| 用户 | Mooooon (UID 61604) |
| 提交 | 2024-03-08 07時59分 (2 年前) |
| 管理 | 2024-03-09 07時53分 (24 hours later) |
| 状态 | 已接受 |
| VulDB条目 | 256303 [CodeAstro Ecommerce Site 1.0 Search action.php cat_id/brand_id/keyword SQL注入] |
| 积分 | 16 |