漏洞描述
74CMS存在SQL注入漏洞,此漏洞是由于ajax_street.php对参数'key'的数据校验不足导致的。
74CMS ajax_street.php CVE-2020-22211 SQL注入漏洞
PoC代码
暂无相关漏洞推荐
-
CVE-2020-22209: 74cms - ajax_common.php SQL Injection POC
2025-09-01 | 74cmsSQL Injection in 74cms 3.2.0 via the query parameter to plus/ajax_common.php. FOFA: app="74cms&... -
CVE-2020-22210: 74cms - ajax_officebuilding.php SQL Injection POC
2025-09-01 | 74cmsA SQL injection vulnerability exists in 74cms 3.2.0 via the x parameter to ajax_officebuilding.php. ... -
CVE-2020-22211: 74cms - ajax_street.php 'key' SQL Injection POC
2025-09-01 | 74cmsSQL Injection in 74cms 3.2.0 via the key parameter to plus/ajax_street.php. FOFA: app="74cms&qu... -
CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection POC
2025-09-01 | Nexus Repository漏洞触发需要任意账户权限 body="Nexus Repository Manager" app="Nexus-Repository-Manager" -
CVE-2020-11455: LimeSurvey 4.1.11 - Path Traversal POC
2025-09-01 | LimeSurveyLimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application/controllers/a...