提交 #34: CMS Web-Gooroo <= 1.141 SQL Injection信息

标题CMS Web-Gooroo <= 1.141 SQL Injection
描述SQL injection vulnerability in /wbg/core/_includes/authorization.inc.php in CMS Web-Gooroo allows remote attackers to execute arbitrary SQL commands via the wbg_login parameter. Thus it's possible to bypass the authorization procedure and gain access to the administrative panel. This vulnerability is handled as CVE 2017-18346 since 26/08/2018.
来源⚠️ https://www.exploit-db.com/exploits/42577/
用户
 Kaimi (UID 1264)
提交2018-08-28 10時43分 (8 年前)
管理2018-08-28 12時50分 (2 hours later)
状态已接受
VulDB条目123295 [CMS Web-Gooroo 直到 1.140 authorization.inc.php wbg_login SQL注入]
积分19

上一步一览下一步

Do you know our Splunk app?

Download it now for free!