漏洞描述
Code-Projects E-Commerce Website是Code-Projects开源的一个电商网站。 Code-Projects E-Commerce Website 1.0版本存在SQL注入漏洞,该漏洞源于对文件/pages/admin_product_details.php中参数prod_id的错误操作,可能导致SQL注入攻击。
Code-Projects E-Commerce Website SQL注入漏洞
PoC代码
暂无相关漏洞推荐
- Code-Projects Content Management System 代码问题漏洞
- Code-Projects Refugee Food Management System SQL注入漏洞
- Code-Projects College Notes Uploading System 代码问题漏洞
- Code-Projects College Notes Uploading System SQL注入漏洞
- Code-Projects Assessment Management SQL注入漏洞
- POC wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- POC CVE-2022-28666: Custom Product Tabs for WooCommerce < 1.7.8 - Unauthenticated Toggle Content Setting Update
- WordPress WooCommerce Designer Pro 插件 /wp-admin/admin-ajax.php wcdp_save_canvas_design_ajax 文件上传漏洞(CVE-2025-6440)
- POC CVE-2025-6403: Code-Projects School Fees Payment System 1.0 - SQL Injection
- WordPress Google for WooCommerce /wp-content/plugins/google-listings-and-ads/vendor/googleads/google-ads-php/scripts/print_php_information.php 信息泄露漏洞(CVE-2024-10486)
- Adobe Commerce/Magento SessionReaper /customer/address_file/upload 文件上传漏洞(CVE-2025-54236)
- (CVE-2015-10135)WPshop 2 E-Commerce插件任意文件上传漏洞
- Project-Online-Shopping-Website SQL注入漏洞