Exploit UAEPD Shopping Script - 'news.php?id' SQL Injection

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
39012
Проверка EDB
  1. Пройдено
Автор
ATT4CKXT3RR0R1ST
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2014-1618
Дата публикации
2014-01-08
UAEPD Shopping Script - 'news.php?id' SQL Injection
Код:
source: https://www.securityfocus.com/bid/64734/info
 
UAEPD Shopping Cart Script is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query.
 
An attacker can exploit these issues by manipulating the SQL query logic to carry out unauthorized actions on the underlying database.
 
http://www.example.com/news.php?id=1
 
Источник
www.exploit-db.com

Похожие темы