Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Online Medicine Ordering System sql injection
Vulnerability Description
A vulnerability classified as critical has been found in SourceCodester Online Medicine Ordering System 1.0. Affected is an unknown function of the file admin/?page=orders/view_order. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. VDB-212346 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对消息或数据结构的处理不恰当
Vulnerability Title
Online Medicine Ordering System 安全漏洞
Vulnerability Description
Online Medicine Ordering System是Carlo Montero个人开发者的一个网上订药系统。 Online Medicine Ordering System 1.0版本存在安全漏洞,该漏洞源于其admin/?page=orders/view_order文件的未知函数对参数id的操作导致攻击者可以实现SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A