CVE-2022-46443 PoC — Bangresto SQL注入漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-46443.yaml

Associated Vulnerability

Title:Bangresto SQL注入漏洞 (CVE-2022-46443)
Description:Bangresto是Mesin Kasir个人开发者的一个餐厅源代码 POS。 Bangresto 1.0版本存在安全漏洞，该漏洞源于其itemqty%5B%5D参数允许攻击者实现SQL注入。

Description

Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter.

File Snapshot


 id: CVE-2022-46443

info:
  name: Bangresto - SQL Injection
  author: Harsh
  severity: high
  descr

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!