Add-cart.php Num __exclusive__ Direct

POST /add-cart.php HTTP/1.1 Host: example.com Content-Type: application/x-www-form-urlencoded Cookie: PHPSESSID=abc123

What "num" typically represents

// 4. Update cart session if (!isset($_SESSION['cart'])) $_SESSION['cart'] = []; add-cart.php num

The attacker uses Burp Suite to fuzz the num parameter with a payload list: 1 , 1.1 , -1 , 999999 , 1 UNION SELECT 1 , 1%00 . POST /add-cart

<?php session_start(); require 'db.php'; // assume DB connection and helper functions 1 UNION SELECT 1

The script usually receives data via a GET or POST request. Let's assume the request looks like add-cart.php?id=123 .