Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-31433 PoC — Evasys SQL注入漏洞

Source
https://github.com/trustcves/CVE-2023-31433
Associated Vulnerability
Title:Evasys SQL注入漏洞 (CVE-2023-31433)
Description:Evasys是德国Evasys公司的一个为在线、纸质和混合用途提供全自动调查和考试解决方案的平台。 Evasys v8.2 Build 2286之前版本和v9.0 Build 2401之前的v9.x版本存在安全漏洞,该漏洞源于存在SQL注入,允许经过身份验证的攻击者通过welche参数执行SQL语句。
File Snapshot

 [4.0K]  /data/pocs/e6b73ea1ba3e3de09965c4d5021752a5763be970
├── [4.0K]  images
│   ├── [260K]  SQLi_1.png
│   ├── [634K]  SQLi_2.png
│   ├── [175K]  SQLi_3.png
│   ├── [1.1M]  SQLi_4.png
│   └── [488K]  SQLi_5.png
└── [4.0K]  writeup.md

1 directory, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.