6 matches found
SQL Injection Vulnerability in Dream Cms
Dream Cms or "lmxcms" is an open source website management system CMS with no license restrictions. Dream CMS 1.4 version of the administration background db.class.php file SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information database...
WordPress: WordPress DB Class, bad implementation of prepare method guides to sqli and information disclosure
Issue 1: Method checks if first argument is an array and if it is, it avoids the rest of the arguments and uses the first argument array values as input. Issue 2: When input query has %s in it, then it quote and this guides to sql injection in case query that need to be prepared have quoted user...
ThinkPHP一处过滤不当造成SQL注入漏洞
简要描述: 内核中某个模块开发的太粗糙啦。 详细说明: 问题出现在session,Thinkphp支持更换session handle。 handle中包括Db和Memcache,如下配置即可使用数据库作为session的存储器: 设置了选项后,在数据库里插入这个表(前缀think可以自己定义): / 数据库方式Session驱动 CREATE TABLE thinksession sessionid varchar255 NOT NULL, sessionexpire int11 NOT NULL, sessiondata blob, UNIQUE KEY sessionid...
tipask quiz system 2. 0SQL time of the blind injection vulnerability-vulnerability warning-the black bar safety net
File /model/question.php function ontag $tag = urldecode$this-get'2'; //secondary code to bypass //echo $tag; $encodeword = urlencode$tag; $navtitle = $tag . '-Tag search'; $qstatus = $status = intval$this-get3; !$ status && $qstatus = "1,2,6"; $startindex = $page - 1 $pagesize; $rownum =...
DB quote_identifier(), possible injection
The method "quoteidentifier" which is used in the DB class to make sure identifiers are quoted can be vulnerable for injection if uncleaned GET variables are passed to it, due to the way pregreplace has been used with the "/e" modifier. All released versions are affected. This has been addressed ...
Most soil group purchase 2. 0_20110901 the background to BYPASS the login background 0day analysis-vulnerability warning-the black bar safety net
Two days before in the black bar to see the most soil group purchase network to BYPASS the login background 0day original of address: the vulnerability information for this vulnerability last year are already out, but the black bar article update comparing fall behind!, the Feel exploit tactics a...