| 标题 | PHP-Guitar-Shop web 1 SQL Injection |
|---|
| 描述 | A vulnerability classified as critical was found in PHP-Guitar-Shop. This affects the file /product.php of the component Product Details Page. The manipulation of the parameter id leads to SQL injection. It is possible to initiate the attack remotely without authentication. The exploit allows unauthorized database access and information disclosure. The exploit has been disclosed to the public and may be used. |
|---|
| 来源 | ⚠️ https://github.com/appaxv/report/blob/main/guitarshopsql.docx |
|---|
| 用户 | shijia (UID 92679) |
|---|
| 提交 | 2025-11-17 06時37分 (5 月前) |
|---|
| 管理 | 2025-12-05 09時50分 (18 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 334481 [TrippWasTaken PHP-Guitar-Shop 直到 6ce0868889617c1975982aae6df8e49555d0d555 Product Details Page /product.php 标识符 SQL注入] |
|---|
| 积分 | 20 |
|---|