CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

seebug.org•added 2015/03/12 12:0 a.m.•13 views

phpems某处设计失误导致3枚SQL注入漏洞

简要描述： phpems某处设计失误导致3枚SQL注入漏洞详细说明： 4. PHPems再来3枚SQL注入漏洞吧存在漏洞代码位置在/app/exam/app.php的lesson函数中 public function lesson $action = $this-ev-url3; $page = $this-ev-get'page'; switch$action case 'ajax': switch$this-ev-url4 case 'questions': $number = $this-ev-get'number'; if!$number$number = 1; $quest...

7.1AI score

Exploits0

seebug.org•added 2014/11/06 12:0 a.m.•71 views

PHPEMS注入一处(Demo测试成功)

简要描述：过滤不严导致的注入详细说明：看文件 /app/exam/app.php 272-286行 public function lesson $action = $this-ev-url3; $page = $this-ev-get'page'; switch$action case 'ajax': switch$this-ev-url4 case 'questions': $number = $this-ev-get'number'; if!$number$number = 1; $questid = $this-ev-getCookie'questype'; $knowsi...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by