Campcodes Online Laundry Management System manage_receiving.php sql injection

A vulnerability has been found in Campcodes Online Laundry Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /manage_receiving.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263893 was assigned to this vulnerability.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

SQL命令中使用的特殊元素转义处理不恰当(SQL注入)

Laundry Management System SQL注入漏洞

Laundry Management System是一个洗衣店管理系统。 Online Laundry Management System 1.0 版本存在SQL注入漏洞，该漏洞源于 /manage_receiving.php 文件的 id 参数存在 SQL 注入漏洞。

N/A

N/A