CVE-2024-2074 PoC — Mini-Tmall SQL注入漏洞

Source

https://github.com/yuziiiiiiiiii/CVE-2024-2074

Associated Vulnerability

Title:Mini-Tmall SQL注入漏洞 (CVE-2024-2074)
Description:Mini-Tmall是基于Spring Boot的迷你天猫商城，快速部署运行，适合作为毕设模板。 Mini-Tmall 20231017及之前版本存在SQL注入漏洞，该漏洞源于文件?r=tmall/admin/user/1/1的参数orderBy会导致SQL注入。

Description

CVE-2024-2074

File Snapshot


 [4.0K]  /data/pocs/a298ba22fa2be4315076f5aff9d67a731f639bd6
└── [1.2K]  cve.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!