| 제목 | SeaCMS V13.3 SQL Injection |
|---|
| 설명 | A SQL injection vulnerability exists in SeaCMS v13.3.
The vulnerable parameter is `id` in `/admin_members.php?ac=editsave`.
An attacker can exploit this issue using a time-based blind SQL injection payload such as:
id=123 OR (SELECT 4554 FROM (SELECT(SLEEP(5)))tNAW)
Successful exploitation allows attackers to extract sensitive information from the database,
including usernames, password hashes, and configuration data.
The vulnerability has been confirmed using sqlmap with the following command:
sqlmap -r sql.txt -p id --dbms=mysql --level=5 --risk=3 --batch --random-agent
Test environment:
- Ubuntu 22
- Apache 2.4.62
- PHP 5.6.40
- MySQL 5.7.43
- SeaCMS v13.3 |
|---|
| 원천 | ⚠️ https://github.com/coolcj-stack/seacms-v13.3-sqli/blob/main/README.md |
|---|
| 사용자 | BlackSpdier (UID 89912) |
|---|
| 제출 | 2025. 09. 07. PM 04:05 (9 개월 ago) |
|---|
| 모더레이션 | 2025. 09. 18. AM 07:13 (11 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 324783 [SeaCMS 까지 13.3 admin_members.php?ac=editsave 아이디 SQL 주입] |
|---|
| 포인트들 | 20 |
|---|