Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PHPOK5.4 has sensitive information disclosure and sql injection #8

Closed
LuckyC4t opened this issue Dec 2, 2019 · 1 comment
Closed

PHPOK5.4 has sensitive information disclosure and sql injection #8

LuckyC4t opened this issue Dec 2, 2019 · 1 comment

Comments

@LuckyC4t
Copy link

LuckyC4t commented Dec 2, 2019

in framework/phpok_call.php, the function _userlist has a sql injection
image
in some reasons, we can controll the value of variable $rs, so we can splice evil sql query
image
image
you can see, it also include sensitive information
@LuckyC4t
Copy link
Author

LuckyC4t commented Dec 2, 2019

it also has in the function _arclist_single
image
image
so we can splice evil sql query. but we should make if($rs['fields_need']) alway false
image
image

@LuckyC4t LuckyC4t changed the title PHPOK5.4 sensitive information disclosure and sql injection PHPOK5.4 has sensitive information disclosure and sql injection Dec 3, 2019
@qinggan qinggan closed this as completed Mar 11, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@qinggan @LuckyC4t