| 标题 | geeeeeeeek dingfanzu master SQL Injection |
|---|
| 描述 | dingfanzu-CMS loadShopInfo.php shopId SQL inject
THis is a food delivery website based on php, including front end and back end
dingfanzu MS does not filter the content correctly at the "loadShopInfo.php" shopId parameter, resulting in the generation of SQL injection.
For details, please see the github document:
https://github.com/XinCaoZ/cve/blob/main/dingfanzu/dingfanzu-CMS%20loadShopInfo.php%20shopId%20SQL%20inject.md
|
|---|
| 来源 | ⚠️ https://github.com/XinCaoZ/cve/blob/main/dingfanzu/dingfanzu-CMS%20loadShopInfo.php%20shopId%20SQL%20inject.md |
|---|
| 用户 | Xinca0 (UID 43189) |
|---|
| 提交 | 2025-02-10 07時30分 (1 年前) |
|---|
| 管理 | 2025-02-21 10時53分 (11 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 296490 [dingfanzu CMS 直到 20250210 /ajax/loadShopInfo.php shopId SQL注入] |
|---|
| 积分 | 20 |
|---|