Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-11444 PoC — Subrion CMS SQL注入漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2017/CVE-2017-11444.yaml
Associated Vulnerability
Title:Subrion CMS SQL注入漏洞 (CVE-2017-11444)
Description:Subrion CMS是Subrion团队开发的一套基于PHP的内容管理系统(CMS)。该系统可被集成到网站,并支持多种扩展插件等。 Subrion CMS 4.1.5.10之前的版本中的/front/search.php文件存在SQL注入漏洞。远程攻击者可借助$_GET数组利用该漏洞执行任意的SQL命令。
Description
Subrion CMS before 4.1.5.10 has a SQL injection vulnerability in /front/search.php via the $_GET array.
File Snapshot

 id: CVE-2017-11444

info:
  name: Subrion CMS <4.1.5.10 - SQL Injection
  author: dwisiswant0
  seve

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.