Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

seebug.org
seebug.orgadded 2013/12/30 12:0 a.m.31 views

CSCMS V3.5 最新版 SQL注射(官方站演示+源码详析)

简要描述: CSCMS V3.5 最新版 存在着注射漏洞,已经在官方演示站证实 http://demo.chshcms.com/ 代码分析在 详细说明 中,实站演示在 漏洞证明中 详细说明: /app/controllers/user/music.php line 16 public function index //用户会员中心-音乐-我分享的-中文舞曲 $data=''; //下面几句使用了xssclean,并不会过滤SQL注射字符,尤其是单引号 $yid = $this-security-xssclean$this-input-get'yid', TRUE;...

7.1AI score
Exploits0
Prion
Prionadded 2009/09/30 3:30 p.m.10 views

Sql injection

SQL injection vulnerability in music.php in BPowerHouse BPMusic 1.0 allows remote attackers to execute arbitrary SQL commands via the musicid parameter...

7.5CVSS9.1AI score0.00338EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder