  jfinal_ CMS 5.1.0 SQL injection

There is a SQLI vul in background mode.The route is as following
<img width="910" alt="1" src="https://user-images.githubusercontent.com/58795040/175862384-81e6d16e-8c57-493c-a73b-294ef4deb3d3.png">

vulnerable argument passing is as following
<img width="713" alt="2" src="https://user-images.githubusercontent.com/58795040/175862445-f226940b-c0fb-47ca-aef5-605238042c4c.png">

I try to grab packets
Inject at orderby
<img width="1145" alt="3" src="https://user-images.githubusercontent.com/58795040/175862526-2afdd32e-856b-40a6-b2b2-6123d40c081c.png">
<img width="1136" alt="4" src="https://user-images.githubusercontent.com/58795040/175862835-691a4ab6-83f1-41a2-95d0-2ffdba6ab457.png">

Discovery injection
<img width="1277" alt="5" src="https://user-images.githubusercontent.com/58795040/175862761-4cf45ebc-10ce-4e03-ab68-644b5d853b7e.png">



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

jfinal_ CMS 5.1.0 SQL injection #43

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development