| Título | wtcms cms 1.0 SQL Injection |
|---|
| Descripción | ● Two critical SQL Injection vulnerabilities have been identified in the check() function within the CommentadminController class of the affected application. The vulnerabilities arise due to improper neutralization of special elements used in SQL commands (ids parameter). The code directly concatenates user-supplied input from the $_POST['ids'] array into SQL queries without using parameterized queries or proper sanitization, allowing an attacker to execute arbitrary SQL commands on the underlying database
● Both vulnerabilities are located in the approval (check) and unapproval (uncheck) function branches. |
|---|
| Fuente | ⚠️ https://www.yuque.com/shangu-vvuup/ydpg69/dd5zpygt7w5w4d19?singleDoc# 《SQL Injection Vulnerability in WTCMS 1.0(Multiple Locations)》 |
|---|
| Usuario | sT1TcH (UID 91291) |
|---|
| Sumisión | 2025-11-04 14:24 (hace 8 meses) |
|---|
| Moderación | 2025-11-29 13:55 (25 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 333787 [taosir WTCMS hasta 01a5f68a3dfc2fdddb44eed967bb2d4f60487665 CommentadminController CommentadminController.class.php check/uncheck/delete ids inyección SQL] |
|---|
| Puntos | 20 |
|---|