cve/CVE-2021-43701.md at 43553e9af13bbdba84028635c21659dede3160a7

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

802 B

Raw Blame History

CVE-2021-43701

Description

CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint /admin/export/getcsv/article_db, via the fieldS[] and orderby parameters.

POC

Reference

http://packetstormsecurity.com/files/166535/CSZ-CMS-1.2.9-SQL-Injection.html
https://github.com/cskaza/cszcms/issues/31
https://www.exploit-db.com/exploits/50846

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/karimhabush/cyberowl

802 B Raw Blame History

CVE-2021-43701

Description

POC

Reference

Github

802 B

Raw Blame History