泛微OA系统 /ServiceAction/com.eweaver.base.security.servlet.LoginAction 参数keywordid SQL注入漏洞

Follow 0

Basic Fields

SSV ID:: SSV-91089

Find Time:: Unknown

Submit Time:: 2016-03-19

Level:

Category:: SQL 注入

Component:

Author:: Unknown

Submitter:: anonymous

CVE-ID：: Add

CNNVD-ID：: Add

CNVD-ID：: Add

ZoomEye Dork：: Add

Source

Detail

Contributor kikay Got 0.95KB

have 5 exchange

PoC (pocsuite 插件) (pocsuite 插件)

Contributor kikay totally have 1.8KB

Login to exchange

have 1 Exchange

Reference Linking

http://www.wooyun.org/bugs/wooyun-2015-0132258

Solutions

Temp Solutions

Unavailable Temp Solutions

Official Solution

Unavailable Official solution

Defense Solutions

Unavailable Defense Solutions

anonymous 兑换PoC
anonymous 兑换漏洞详情
wowoabc 兑换漏洞详情
nohack8 兑换漏洞详情
harbour001 兑换漏洞详情
fly520 兑换漏洞详情

Timeline

发现/披露了漏洞
kikay

2016-03-19 提交了漏洞
kikay

2016-03-19 提交更新了 PoC
anonymous

2016-04-28 提交补充了漏洞详情

Related Vuls

Unavailable Comments

※Any content provided by this site, only to learn the code and services, not for illegal purposes