漏洞描述
Ecology 8 contains a SQL injection vulnerability via a GET request. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site.
ecology-v8-sqli: Ecology 8 - SQL Injection
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-11700: N-central - XML External Entities Injection
- POC CVE-2025-51991: XWiki <= 17.3.0 - Server-Side Template Injection (SSTI)
- POC CVE-2023-39121: Emlog 2.1.9 - SQL Injection
- POC CVE-2025-1023: ChurchCRM - SQL Injection
- POC CVE-2025-32429: XWiki Platform - SQL Injection
- POC CVE-2025-52472: XWiki - HQL Injection
- POC CVE-2025-6403: Code-Projects School Fees Payment System 1.0 - SQL Injection
- amtt-hiboss-language-sqli: 安美数字酒店宽带运营系统SQL注入漏洞
- chanjet-tplus-checkpassword-sqli: 用友 畅捷通T+ CheckPassword SQL注入漏洞
- duomicms-sqli: Duomicms sqli
- ecology-ebridge-addtaste-sqli: 泛微云桥 taste/addTaste SQL注入
- ecology-ifnewscheckoutbycurrentuser-dwr-sqli: 泛微 E-Cology ifnewscheckoutbycurrentuser.dwr SQL 注入
- ecology-ktreeuploadaction-upload: 泛微 e-cology 任意文件上传