Konuyu Oyla:
  • Derecelendirme: 0/5 - 0 oy
  • 1
  • 2
  • 3
  • 4
  • 5
Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability
#1
• Software Link:

http://dotclear.org/

• Affected Versions:

Version 2.6.2 and probably prior versions.

• Vulnerability Description:

The vulnerable code is located in /admin/categories.php:


Kod:
# Update order
if (!empty($_POST['save_order']) && !empty($_POST['categories_order'])) {
    $categories = json_decode($_POST['categories_order']);

    foreach ($categories as $category) {
        if (!empty($category->item_id)) {
            $core->blog->updCategoryPosition($category->item_id, $category->left, $category->right);
        }
    }

    dcPage::addSuccessNotice(__('Categories have been successfully reordered.'));
    http::redirect('categories.php');
}
Beğenenler:
#2
Teşekkürler archavin.
Beğenenler:
#3
Teşekkürler
İnsɑnlɑr değişmez değişen tek şey şɑrtlɑr ve çıkɑrlɑr...
Beğenenler:

Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  PhpLinks Cross Site Scripting Vulnerability archavin 39 285,455 30-10-2016, Saat: 12:35
Son Yorum: JoseQual
  Wordpress HackFile Disclosure Vulnerability archavin 2 488 26-10-2016, Saat: 18:45
Son Yorum: Kolonkun
  創意細胞 SQL Injection H4Sec 27 751 10-03-2016, Saat: 18:37
Son Yorum: byhacı
  Israelian CMS Blind SQL Injection Vulnerability H4Sec 16 1,108 01-03-2016, Saat: 03:59
Son Yorum: Zany
  Yazılım Script'i Türkiye XSS Vulnerability Stallk3r 21 906 18-01-2016, Saat: 01:28
Son Yorum: archavin
Anahtar Kelimeler

Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability indir, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Videosu, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Online izle, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Bedava indir, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Yükle, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Hakkında, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Nedir, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Free indir, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Oyunu, Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability Download


1 Ziyaretçi