SQL Injection Vulnerability in Website Building System of Taixing Jingchuang Network Co.

Taixing Jingchuang Networks provides enterprise Internet application services for enterprise customers to provide a complete Internet application services, services include Taixing web design, Taixing website construction, Taixing web production, Taixing website revision, Taixing website promotio...

南京大汉某政府信息公开系统存在通用型SQL注入

简要描述： 貌似这处没报过。 详细说明： 大汉政府信息公开系统 参数applystarttime、webid没有做任何处理就直接可以作为sql语句拼接，会造成sql注入。 POST /xxgk/jcmsfiles/jcms1/web1/site/zfxxgk/ysqgk/ysqgksearch.jsp HTTP/1.1 Accept: text/html, application/xhtml+xml, / Accept-Language: zh-CN User-Agent: Mozilla/5.0 Windows NT 6.1; Win64; x64; Trident/7.0;...