2021-02-17 14:32:25
mitre
PUBLISHED
The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases.