DedeCMS 5.7 SP2 has SQL Injection via the dede\co_do.php ids parameter.
References
Link | Resource |
---|---|
https://github.com/moonf1sh/moonf1sh.github.io/blob/master/2018/10/30/DedeCMS-V57-SQL%E6%B3%A8%E5%85%A5/index.html | Third Party Advisory |
https://moonf1sh.github.io/2018/10/30/DedeCMS-V57-SQL%E6%B3%A8%E5%85%A5/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:21:55
Updated: 2022-10-03T16:21:55
Reserved: 2022-10-03T00:00:00
Link: CVE-2018-19061
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-11-07T17:29:00.297
Modified: 2018-12-10T17:11:58.733
Link: CVE-2018-19061
JSON object: View
Redhat Information
No data.
CWE