漏洞标题
电影售票系统的编辑Booking.php SQL注入
漏洞描述信息
电影票预订系统editBooking.php SQL注入
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Movie Ticket Booking System editBooking.php sql injection
漏洞描述信息
A vulnerability, which was classified as critical, has been found in Movie Ticket Booking System. This issue affects some unknown processing of the file editBooking.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214625 was assigned to this vulnerability.
CVSS信息
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
漏洞类别
对消息或数据结构的处理不恰当
漏洞标题
Movie Ticket Booking System 安全漏洞
漏洞描述信息
Movie Ticket Booking System是Aman sharma个人开发者的一个电影票预订系统。 Movie Ticket Booking System存在安全漏洞,该漏洞源于文件editBooking.php的某些未知处理存在问题,对参数id的操作会导致sql注入。
CVSS信息
N/A
漏洞类别
其他