漏洞描述
Invision Community存在SQL注入漏洞,此漏洞是由于store.php接口对用户的请求验证不当导致的。
Invision Community CVE-2024-30163 SQL注入漏洞
PoC代码
暂无相关漏洞推荐
- InvisionCommunity存在代码注入漏洞(CVE-2025-47916)
- POC CVE-2019-14696: Open-School 3.0/Community Edition 2.3 - Cross-Site Scripting
- POC CVE-2019-3911: LabKey Server Community Edition <18.3.0 - Cross-Site Scripting
- POC CVE-2019-3912: LabKey Server Community Edition <18.3.0 - Open Redirect
- POC CVE-2020-13158: Artica Proxy Community Edition <4.30.000000 - Local File Inclusion
- POC CVE-2021-40651: OS4Ed OpenSIS Community 8.0 - Local File Inclusion
- POC CVE-2021-41381: Payara Micro Community 5.2021.6 Directory Traversal
- POC CVE-2024-30163: IPS Community Suite - Unauthenticated SQL Injection
- POC CVE-2025-47916: Invision Community <=5.0.6 Unauthenticated RCE via Template Injection
- POC CVE-2021-41381: Payara Micro Community 5.2021.6 Directory Traversal
- POC salesforce-community-misconfig: Salesforce Community Misconfiguration
- POC snmpv1-community-detect-string: SNMPv1 Public Community String - Detect
- HashiCorp Vault Community Edition等 权限管理不当漏洞