提交 #731012: code-projects Online Product Reservation system V1.0 SQL Injection信息

标题code-projects Online Product Reservation system V1.0 SQL Injection
描述A critical SQL injection vulnerability exists in the product addition functionality. The application directly concatenates multiple POST parameters into SQL INSERT queries without validation, allowing attackers to extract sensitive database data.
来源⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_add_prod.php.md
用户
 Ho Cherry (UID 94105)
提交2026-01-03 10時26分 (5 月前)
管理2026-01-03 17時02分 (7 hours later)
状态已接受
VulDB条目339460 [code-projects Online Product Reservation System 1.0 Parameter prod.php cat/price/name/model/serial SQL注入]
积分16

上一步一览下一步

Might our Artificial Intelligence support you?

Check our Alexa App!