Discuz! ychat插件 SQL注入

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

<p>discuz ychat插件注入漏洞</p><p>table_ychat_rooms.php</p><p>code 区域</p> <pre> public function fetch_all_by_category($categoryID,$start=0,$limit=0)<br style="margin: 0px; padding: 0px;"> {<br style="margin: 0px; padding: 0px;"> if(!$categoryID)<br style="margin: 0px; padding: 0px;"> {<br style="margin: 0px; padding: 0px;"> return null;<br style="margin: 0px; padding: 0px;"> }<br style="margin: 0px; padding: 0px;"> $result=array();<br style="margin: 0px; padding: 0px;"> $result=DB::fetch_all("select * from ".DB::table($this-&gt;table)." where categoryID=".$categoryID." order by cnum desc ". DB::limit($start, $limit));//直接带入查询<br style="margin: 0px; padding: 0px;"> <br style="margin: 0px; padding: 0px;"> return $result; </pre><p><br><br>rooms.php<br><br><br><br></p><p>code 区域</p> <pre> if(!defined('IN_DISCUZ')) {<br style="margin: 0px; padding: 0px;"> exit('Access Denied');<br style="margin: 0px; padding: 0px;"> }<br style="margin: 0px; padding: 0px;"> $_G['disabledwidthauto'] = 1;<br...

0%
暂无可用Exp或PoC
当前有0条受影响产品信息