| 제목 | mccms url存在sql注入 |
|---|
| 설명 | mscms url存在严重的sql注入,可导致数据泄露,
mscms的版本为2.6
以下为验证方式
http://ip/category/order/hits/copyright/46/finish/1/list/1'“1
http://ip/category/order/hits/city/42/copyright/46/finish/1/list/1'“1
http://ip/category/order/addtime/city/42/copyright/46/finish/1/list/1'“1
We need more details about your vulnerability to do a proper validation (duplicates and false-positives). Otherwise we have to reject the submission.
We need more details about your vulnerability to do a proper validation (duplicates and false-positives). Otherwise we have to reject the submission.
We need more details about your vulnerability to do a proper validation (duplicates and false-positives). Otherwise we have to reject the submission.
We need more details about your vulnerability to do a proper validation (duplicates and false-positives). Otherwise we have to reject the submission.
We need more details about your vulnerability to do a proper validation (duplicates and false-positives). Otherwise we have to reject the submission.
|
|---|
| 원천 | ⚠️ https://github.com/1541284314/cve/blob/main/README.md |
|---|
| 사용자 | yan8925298 (UID 51734) |
|---|
| 제출 | 2023. 09. 13. AM 05:17 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 09. 17. AM 08:25 (4 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 239871 [mccms 2.6 1 SQL 주입] |
|---|
| 포인트들 | 19 |
|---|