EDB-41377webappsphp検証済み

dotCMS 3.6.1 - Blind Boolean SQL Injection

Ben Nott2/16/2017Port 80

Exploit-DBで表示 GitLabでソースを表示

AI分析AIによる分析

エクスプロイトコード

Exploit code not available in database

GitLabでソースを表示

CVE-2017-5344

9.8CRITICAL

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex...

2/17/2017CWE-89

AI分析AIによる分析

エクスプロイトコード

関連CVE (1)

CVE-2017-5344

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex