https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2021%E2%80%9327673_Zenario_CMS_8.8.52729_SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E%2FenCVE-2021–27673 Zenario CMS 8.8.52729 SQL注入漏洞/en - Revision history2026-04-15T07:59:10ZRevision history for this page on the wikiMediaWiki 1.35.1https://pwnwiki.com/index.php?title=CVE-2021%E2%80%9327673_Zenario_CMS_8.8.52729_SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E/en&diff=4815&oldid=prevPwnwiki: Created page with "==Affected Versions=="2021-06-12T01:37:02Z<p>Created page with "==Affected Versions=="</p>
<p><b>New page</b></p><div><languages /><br />
<br />
==Affected Versions==<br />
Version: 8.8.52729<br />
<br />
<br />
==EXP==<br />
<pre><br />
# Exploit Title: Zenario CMS 8.8.52729 - 'cID' Blind & Error based SQL injection (Authenticated)<br />
# Date: 05–02–2021<br />
# Exploit Author: Avinash R<br />
# Vendor Homepage: https://zenar.io/<br />
# Software Link: https://github.com/TribalSystems/Zenario/releases/tag/8.8<br />
# Version: 8.8.52729<br />
# Tested on: Windows 10 Pro (No OS restrictions)<br />
# CVE : CVE-2021–27673<br />
# Reference: https://deadsh0t.medium.com/blind-error-based-authenticated-sql-injection-on-zenario-8-8-52729-cms-d4705534df38<br />
<br />
##### Step To Reproduce #####<br />
<br />
1) Login to the admin page of Zenario CMS with admin credentials, which is<br />
http://server_ip/zenario/admin.php<br />
<br />
2) Click on, New → HTML page to create a new sample page and intercept it<br />
with your interceptor.<br />
<br />
3) Just a single quote on the 'cID' parameter will confirm the SQL<br />
injection.<br />
<br />
4) After confirming that the 'cID' parameter is vulnerable to SQL<br />
injection, feeding the request to SQLMAP will do the rest of the work for<br />
you.<br />
<br />
############ End ############<br />
</pre></div>Pwnwiki