Simple Subscription Website v1.0 exists to contain a SQL injection vulnerability via the id parameter in the view_plan endpoint. This vulnerability allows malicious users to dump the application's database via crafted HTTP requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simple subscription website project simple subscription website 1.0 |