CVEs-PoC/2014/CVE-2014-3783.md at e6ecd99f3d241ced14da2cc5fcb4da3fd3429d9d

mirror of https://github.com/0xMarcio/cve.git synced 2026-03-31 05:59:18 +02:00

Files

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

SQL injection vulnerability in admin/categories.php in Dotclear before 2.6.3 allows remote authenticated users with the manage categories permission to execute arbitrary SQL commands via the categories_order parameter.

POC

Reference

http://packetstormsecurity.com/files/126768/Dotclear-2.6.2-SQL-Injection.html

Github

No PoCs found on GitHub currently.

716 B Raw Blame History

CVE-2014-3783

Description

POC

Reference

Github

716 B

Raw Blame History