漏洞描述
SourceCodester Client Database Management System是SourceCodester开源的一个客户端数据库管理系统。 SourceCodester Client Database Management System 1.0版本存在注入漏洞,该漏洞源于文件/user_proposal_update_order.php对参数order_id处理不当,可能导致SQL注入。
SourceCodester Client Database Management System 注入漏洞
PoC代码
暂无相关漏洞推荐
- POC batflat-sqlite-exposure: Batflat SQLite Database - Exposure
- 孚盟云 lkpClientsCust.aspx SQL注入漏洞
- 金慧综合管理信息系统SystemName参数存在SQL注入漏洞
- POC CVE-2022-38130: KeySight RF - smsRestoreDatabaseZip UNC path to Remote Code Execution
- POC wordpress-db-exposure: WordPress Database Backup File - Exposure
- POC wp-iwp-client-fpd: WordPress Plugin InfiniteWP Client - Full Path Disclosure
- 孚盟云CRM lkpClientsCust.aspx 存在SQL注入漏洞
- Code-Projects Refugee Food Management System SQL注入漏洞
- CampCodes Supplier Management System SQL注入漏洞
- Code-Projects College Notes Uploading System SQL注入漏洞
- Code-Projects Assessment Management SQL注入漏洞
- 深圳市易宇通科技有限公司kingtrans物流管理系统ClientInfo serialids参数存在SQL注入漏洞
- itsourcecode Online Frozen Foods Ordering System SQL注入漏洞