ThinkSNS V3.0 /apps/public/Lib/Action/AccountAction.class.php SQL注入漏洞

Basic Fields

SSV ID:
SSV-89138
Find Time:
2015-03-20
Submit Time:
2015-04-20
Level:
Category:
SQL 注入
Component:
ThinkSNS
(V3.0)
Author:
Unknown
Submitter:
Knownsec
CVE-ID:
Add
CNNVD-ID:
Add
CNVD-ID:
Add
ZoomEye Dork:
Add

Source

Detail

Contributor Knownsec Got  0.95KB
Loading icon
v5h4ck mrbean have 6  exchange

PoC (pocsuite 插件) (pocsuite 插件)

Contributor Knownsec totally have   0.85KB
Login to exchange

kenan have 6 Exchange

Reference Linking

Solutions

Temp Solutions

Official Solution

Unavailable Official solution

Defense Solutions

Unavailable Defense Solutions

Timeline

  • 2015-03-20 发现/披露了漏洞
  • 2015-03-20 提交更新了 PoC
  • 2015-04-20 提交了漏洞
  • 2015-04-20 提交补充了漏洞详情
  • 2015-04-21 提交补充了漏洞靶场

Related Vuls

Popularity 1666
Need to bind phone before comment. Bind Now

Unavailable Comments

※Any content provided by this site, only to learn the code and services, not for illegal purposes

京ICP备10040895号 京公网安备 11010502034610号 Copyright @ 404 Team from Knownsec. 简体中文