Source |
CVE Liste |
Identifiant |
8319375 |
Date de publication |
2023-03-17 07:15:13 (vue: 2023-03-17 11:06:59) |
Titre |
CVE-2023-1455 |
Texte |
A vulnerability classified as critical was found in SourceCodester Online Pizza Ordering System 1.0. This vulnerability affects unknown code of the file admin/ajax.php?action=login2 of the component Login Page. The manipulation of the argument email with the input abc%40qq.com' AND (SELECT 9110 FROM (SELECT(SLEEP(5)))XSlc) AND 'jFNl'='jFNl leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-223300. |
Envoyé |
Oui |
Condensat |
1455 2023 223300 40qq 9110 abc action=login2 admin/ajax affects argument attack been can classified code com component critical cve disclosed email exploit file found from has identifier initiated injection input jfnl leads login manipulation may online ordering page php pizza public remotely select sleep sourcecodester sql system unknown used vdb vulnerability xslc |
Tags |
Vulnerability
Guideline
|
Stories |
|
Notes |
|
Move |
|