Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-2621 PoC — Fujian Kelixin Command and Dispatch Platform SQL注入漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-2621.yaml
Associated Vulnerability
Title:Fujian Kelixin Command and Dispatch Platform SQL注入漏洞 (CVE-2024-2621)
Description:Fujian Kelixin Command and Dispatch Platform是福建科立信Fujian Kelixin公司的一个指挥调度平台。 Fujian Kelixin Command and Dispatch Platform 20240318版本及之前版本存在SQL注入漏洞,该漏洞源于/api/client/user/pwd_update.php中包含未知函数,通过参数 uuid 导致SQL注入。
Description
A vulnerability was found in Fujian Kelixin Communication Command and Dispatch Platform up to 20240318 and classified as critical. Affected by this issue is some unknown functionality of the file api/client/user/pwd_update.php.
File Snapshot

 id: CVE-2024-2621

info:
  name: Fujian Kelixin Communication - Command Injection
  author: Dhiyanes

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.