phpwind 疑似注入一枚.

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

### 简要描述: 9.0 utf8版本 看看是不是注入 ### 详细说明: [<img src="https://images.seebug.org/upload/201305/31112805415fd87f613b75cec682d32e127354ba.jpg" alt="1.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201305/31112805415fd87f613b75cec682d32e127354ba.jpg) [db.WindSqlStatement.execute] SQLSTATE[42000]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1SQL:DELETE FROM pw_message_notices WHERE `uid`=? AND `typeid`=? AND `param` IN ### 漏洞证明: [<img src="https://images.seebug.org/upload/201305/31112805415fd87f613b75cec682d32e127354ba.jpg" alt="1.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201305/31112805415fd87f613b75cec682d32e127354ba.jpg) [db.WindSqlStatement.execute] SQLSTATE[42000]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that...

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息