제출 #517926: fastcms v0.1.5 SQL injection vulnerability정보

제목fastcms v0.1.5 SQL injection vulnerability
설명The `client/article/list/open` interface of fastcms_v0.1.5 contains a SQL injection vulnerability. Attackers can exploit this vulnerability by constructing special SQL statements through the `orderBy` parameter, achieving the effect of SQL time-based blind injection, and thereby stealing sensitive information from the database.
원천⚠️ https://github.com/IceFoxH/VULN/issues/9
사용자
 icefoxh (UID 82165)
제출2025. 03. 11. AM 07:47 (1 년도 ago)
모더레이션2025. 03. 21. AM 08:18 (10 days later)
상태수락
VulDB 항목300577 [FastCMS 까지 0.1.5 /api/client/article/list orderBy SQL 주입]
포인트들19

이전개요다음

Interested in the pricing of exploits?

See the underground prices here!