CVE-2014-3704 Drupal core 7.x before 7.32 SQL注入漏洞

INFO

The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared statements, which allows remote attackers to conduct SQL injection attacks via an array containing crafted keys.

EXP

https://github.com/JustYoomoon/Exploit/blob/main/CVE-2014-3704.zip

Anonymous

Search

CVE-2014-3704 Drupal core 7.x before 7.32 SQL注入漏洞

Namespaces

More

Page actions

INFO

EXP

Navigation

Navigation

Community

PwnWiki.org

Wiki tools

Wiki tools

Anonymous

Search

CVE-2014-3704 Drupal core 7.x before 7.32 SQL注入漏洞

INFO

EXP

Navigation

Wiki tools

Page tools