Skip to content

Commit

Permalink
*
Browse files Browse the repository at this point in the history
  • Loading branch information
@Mr5m1th
Mr5m1th committed Sep 26, 2017
1 parent 8f3c46e commit 2c4647b
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions CMS/sugarCRM/sugarCRM_v6.5.26/README.md
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
漏洞详情 :
1. SQL注入漏洞->modules/Emails/DetailView.php $query语句->$parent_id 中加入 \ 可绕过防护措施
2.CSRF+盲注
3.对象注入
漏洞详情 :
1. SQL注入漏洞->modules/Emails/DetailView.php $query语句->$parent_id 中加入 \ 可绕过防护措施
2.CSRF+盲注
3.对象注入
4:认证文件泄露(任意文件读取)->modules/Connecors/controller.php->action_CallRest()函数->/index.php?...&module=CallRest&url=/etc/passwd 可读取配置文件
利用条件 :
1 3 4 只能通过一个有效的用户会话进行访问并利用 2 则可以直接利用

0 comments on commit 2c4647b

Please sign in to comment.