提交 #497477: geeeeeeeek dingfanzu master SQL Injection信息

标题geeeeeeeek dingfanzu master SQL Injection
描述dingfanzu-CMS loadShopInfo.php shopId SQL inject THis is a food delivery website based on php, including front end and back end dingfanzu MS does not filter the content correctly at the "loadShopInfo.php" shopId parameter, resulting in the generation of SQL injection. For details, please see the github document: https://github.com/XinCaoZ/cve/blob/main/dingfanzu/dingfanzu-CMS%20loadShopInfo.php%20shopId%20SQL%20inject.md
来源⚠️ https://github.com/XinCaoZ/cve/blob/main/dingfanzu/dingfanzu-CMS%20loadShopInfo.php%20shopId%20SQL%20inject.md
用户
 Xinca0 (UID 43189)
提交2025-02-10 07時30分 (1 年前)
管理2025-02-21 10時53分 (11 days later)
状态已接受
VulDB条目296490 [dingfanzu CMS 直到 20250210 /ajax/loadShopInfo.php shopId SQL注入]
积分20

Do you want to use VulDB in your project?

Use the official API to access entries easily!