daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update aerocms-sqli.yaml

patch-1
Ritik Chaddha 2022-10-20 12:45:34 +05:30 committed by GitHub
parent 9fe5faac71
commit dced04fd39
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
vulnerabilities/other/aerocms-sqli.yaml
View File

@ -8,6 +8,7 @@ info:
The `author` parameter from the AeroCMS-v0.0.1 CMS system appears to be vulnerable to SQL injection attacks.The malicious user can dump-steal the database, from this CMS system and he can use it for very malicious purposes. The `author` parameter from the AeroCMS-v0.0.1 CMS system appears to be vulnerable to SQL injection attacks.The malicious user can dump-steal the database, from this CMS system and he can use it for very malicious purposes.
reference: reference:
- https://www.exploit-db.com/exploits/51022 - https://www.exploit-db.com/exploits/51022
- https://github.com/MegaTKC/AeroCMS/releases/tag/v0.0.1
metadata: metadata:
verified: true verified: true
tags: aero,cms,sqli tags: aero,cms,sqli