CVEs-PoC/2018/CVE-2018-6411.md at 183d1f8677d424ca51cab102bc615f8bcebb511d

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-28 11:21:40 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap_form_elements SQL Injection.

POC

Reference

https://metalamin.github.io/MachForm-not-0-day-EN/
https://metalamin.github.io/MachForm-not-0-day-EN/
https://www.exploit-db.com/exploits/44804/
https://www.exploit-db.com/exploits/44804/

Github

No PoCs found on GitHub currently.

895 B Raw Blame History

CVE-2018-6411

Description

POC

Reference

Github

895 B

Raw Blame History