CVE-2024-32640 PoC — Masa CMS SQL注入漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-32640.yaml

Associated Vulnerability

Title:Masa CMS SQL注入漏洞 (CVE-2024-32640)
Description:Masa CMS是一个数字体验平台。 MASA CMS 7.4.6之前版本、7.3.13之前版本和7.2.8之前版本存在SQL注入漏洞，该漏洞源于processAsyncObject方法存在SQL注入，可能导致远程代码执行。

Description

The Mura/Masa CMS is vulnerable to SQL Injection.

File Snapshot


 id: CVE-2024-32640

info:
  name: Mura/Masa CMS - SQL Injection
  author: iamnoooob,rootxharsh,pdres

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!