织梦(DedeCms) v5.6-5.7 越权访问漏洞(直接进入后台)

Follow 1

Basic Fields

SSV ID:: SSV-20859

Find Time:: Unknown

Submit Time:: 2011-08-16

Level:

Category:: 越权访问

Component:: DedeCMS

Author:: Unknown

Submitter:: Knownsec

CVE-ID：: Add

CNNVD-ID：: CNNVD-201108-289

CNVD-ID：: Add

ZoomEye Dork：: Add

Source

Detail

Contributor Knownsec Got 3.6KB

etc 21 exchange

PoC (非 pocsuite 插件)

Contributor Knownsec totally have 5.65KB

etc 30 Exchange

Reference Linking

http://www.t00ls.net

Solutions

Temp Solutions

Official Solution

Defense Solutions

Timeline

发现/披露了漏洞
2011-08-16 提交了漏洞
2011-08-16 提交补充了漏洞详情
2011-08-16 提交更新了 PoC

Related Vuls

Unavailable Comments

※Any content provided by this site, only to learn the code and services, not for illegal purposes