Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Re:Desk 2.3 contains a blind unauthenticated SQL injection vulnerability in the getBaseCriteria() function in the protected/models/Ticket.php file. By modifying the folder GET parameter, it is possible to execute arbitrary SQL statements via a crafted URL. Unauthenticated remote command execution is possible by using this SQL injection to update certain database values, which are then executed by a bizRule eval() function in the yii/framework/web/auth/CAuthManager.php file. Resultant authorization bypass is also possible, by recovering or modifying password hashes and password reset tokens, allowing for administrative privileges to be obtained.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Desk SQL注入漏洞
Vulnerability Description
Desk是个人开发者的一款写作,博客和记笔记应用。 Desk 2.3版本存在SQL注入漏洞,该漏洞源于protected/models/Ticket.php文件的getBaseCriteria()函数中存在一个盲的未经认证的SQL注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A