Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
itsourcecode Bakery Online Ordering System index.php sql injection
Vulnerability Description
A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument txtsearch leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-267091.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Bakery Online Ordering System SQL注入漏洞
Vulnerability Description
Bakery Online Ordering System是janobe个人开发者的一个面包店在线订购系统。 Bakery Online Ordering System 1.0版本存在SQL注入漏洞,该漏洞源于index.php 包含未知函数,通过参数 txtsearch 导致SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A