逐浪CMS 2.X版本\Common\file.aspx SQL注入漏洞

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

<p>问题文件:\Common\file.aspx<br>注:此问题文件包含两个注入<br>参数:code<br>代码分析如下:</p><pre>protected void Page_Load(object sender, EventArgs e)<br style="margin: 0px; padding: 0px;"> {<br style="margin: 0px; padding: 0px;"> string str = "http://" + HttpContext.Current.Request.Url.Authority.ToString() + "/UploadFiles/" + this.ull.GetLogin(true).UserName;<br style="margin: 0px; padding: 0px;"> if (base.Request.QueryString["code"] == null &amp;&amp; base.Request.QueryString["FD"] != null)<br style="margin: 0px; padding: 0px;"> {<br style="margin: 0px; padding: 0px;"> if (base.Request.QueryString["ur"] == null &amp;&amp; base.Request.QueryString["state"] == null)<br style="margin: 0px; padding: 0px;"> {<br style="margin: 0px; padding: 0px;"> string value = base.Server.UrlDecode(base.Request.QueryString["FD"]);<br style="margin: 0px; padding: 0px;"> this.FileUrl = this.FileJiema(value);<br style="margin: 0px; padding: 0px;"> this.hid.Value = base.Server.UrlDecode(base.Request.QueryString["FD"]);<br...

0%
暂无可用Exp或PoC
当前有0条受影响产品信息