hellohacker issues

Repositories
Issues
Comments

Results 2 issues of


                                            hellohacker

[CVE-2022-28505] SQL injection vulnerability exists in JFinal CMS 5.1.0

# SQL injection vulnerability exists in JFinal CMS 5.1.0 # Analysis The vulnerability appears in lines 23-47 of the **com.jflyfox.system.log.LogController.java** ![image](https://user-images.githubusercontent.com/100123029/160562065-b3a28e66-c146-49b3-a3a6-4592d81257ab.png) Here call **SQLUtils** to query with the following statement:...

SQL injection vulnerability exists in cszcms

* Vulnerability Name: SQL injection * Date of Discovery: 23/2/2022 * Product version： CSZ CMS 1.2.2 DownloadLink : https://github.com/cskaza/cszcms * Author: N1ce * Vulnerability Description: The application does not judge...