漏洞描述
【漏洞对象】weiphp开源微信公众号平台 【漏洞描述】weiphp开源微信公众号平台开发框架的低版本存在前台sql注入,可造成信息数据泄露,攻击者可利用该漏洞执行SQL指令,甚至入侵服务器。
weiphp开源微信公众号平台开发框架前台-SQL注入
PoC代码
暂无相关漏洞推荐
- POC CVE-2019-10647: ZZZCMS ZZZPHP 1.6.3 – Remote PHP Code Execution (RCE)
- POC CVE-2023-38875: PHP Login System 2.0.1 - Cross-Site Scripting
- POC functions-php-disclosure: functions.php Full Path Disclosure
- POC CVE-2025-44136: MapTiler Tileserver-php v2.0 - Unauthenticated XSS
- POC CVE-2025-44137: MapTiler Tileserver-php v2.0 - Unauthenticated File Read
- POC generic-php-files: Generic PHP Backup Information Disclosure
- PHPGurukul Employee Record Management System 代码注入漏洞
- PHPJABBERS Restaurant Menu Maker Project 代码注入漏洞
- php-livechat-uploadimg-html-upload: PHP LiveChat Upload
- thinkphp-30-rce: Thinkphp 3.0 RCE
- thinkphp-5.0.23-rce: Thinkphp debug 执行任意命令
- thinkphp-50-rce: Thinkphp 5.0 RCE
- thinkphp-v6-file-write: thinkphp-v6-file-write