PHPYUN最新版多处SQL注入及越权操作

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

### 简要描述: PHPYUN最新版(phpyun_v3.1.0604_gbk)多处SQL注入及越权操作 这里一共存在九处SQL注入及越权操作!!! ### 详细说明: 这里一共存在九处SQL注入及越权操作!!! 文件/member/model/com.class.php 第一处SQL注入、越权删除职位信息: ``` function job(){ ...... if($_GET['del'] || is_array($_POST['checkboxid'])){ if(is_array($_POST['checkboxid'])){ $layer_type=1; $delid=@implode(",",$_POST['checkboxid']); }else if($_GET['del']){ $layer_type=0; $delid=$_GET['del']; } $nid=$this->obj->DB_delete_all("company_job","`id` in (".$delid.") and `uid`='".$this->uid."'"," "); if($nid){ $rows=$this->obj->DB_select_all("company_job","`id` in (".$delid.") and `r_status`<>'2'","`state`"); if(is_array($rows)){ $status0=$status1=$status2=$status3=0; foreach($rows as $v){ if($v['state']=="0"){ $status0=$status0+1; }elseif($v['state']=="1"){ $status1=$status1+1; }elseif($v['state']=="2"){ $status2=$status2+1; }elseif($v['state']=="3"){ $status3=$status3+1; } } $num=count($rows); $value.="`status0`=`status0`-$status0,"; $value.="`status1`=`status1`-$status1,";...

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息