mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-03 00:04:43 +00:00
780 B
780 B
CVE-2011-5230
Description
Multiple SQL injection vulnerabilities in the selectUserIdByLoginPass function in seotoaster_core/application/models/LoginModel.php in Seotoaster 1.9 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) login parameter to sys/login/index or (2) memberLoginName parameter to sys/login/member.
POC
Reference
Github
No PoCs found on GitHub currently.