漏洞描述
【漏洞对象】MetInfo 【涉及版本】MetInfo V5.3.1 【漏洞描述】MetInfo5.3.1版本的新闻页面new.php存在sql注入漏洞,攻击者可以利用该漏洞获取数据库信息,进行进一步攻击。
MetInfo V5.3.1_news.php sql注入
PoC代码
暂无相关漏洞推荐
- CVE-2019-16996: Metinfo 7.0.0beta SQL Inject
- CVE-2019-16997: Metinfo sql inject
- CVE-2019-17418: Metinfo sql inject
- POC CVE-2019-16996: Metinfo 7.0.0 beta - SQL Injection
- POC CVE-2019-16997: Metinfo 7.0.0 beta - SQL Injection
- POC CVE-2019-17418: MetInfo 7.0.0 beta - SQL Injection
- POC CVE-2020-12127: WAVLINK WN530H4 M30H4.V5030.190403 - Information Disclosure
- POC CVE-2022-31847: WAVLINK WN579 X3 M79X3.V5030.180719 - Information Disclosure
- POC CVE-2022-48164: Wavlink WL-WN533A8 M33A8.V5030.190716 - Information Disclosure
- POC CVE-2022-48166: Wavlink WL-WN530HG4 M30HG4.V5030.201217 - Information Disclosure
- POC CVE-2024-29972: Zyxel NAS326 Firmware < V5.21(AAZF.17)C0 - NsaRescueAngel Backdoor Account
- POC CVE-2024-29973: Zyxel NAS326 Firmware < V5.21(AAZF.17)C0 - Command Injection
- POC CVE-2025-2709: Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting