| Title | DedeBIZ DedeBIZ 6.3.0 sqli |
|---|
| Description | DedeBIZ 6.3.0 in /admin/makehtml_freelist_action.php does not fully verify the incoming data from the front end, resulting in an error-reporting SQLI vulnerability. The corresponding source code can be downloaded from the official website: https://www.dedebiz.com/download |
|---|
| Source | ⚠️ https://github.com/JTZ-a/SRC/blob/master/DedeBIZ/DedeBIZ%20-%20sqli%201/README.md |
|---|
| User | JTZ- (UID 59232) |
|---|
| Submission | 01/07/2024 10:53 (2 years ago) |
|---|
| Moderation | 01/15/2024 10:13 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 250726 [DedeBIZ 6.3.0 makehtml_freelist_action.php startid sql injection] |
|---|
| Points | 18 |
|---|