Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-9053 PoC — CMS Made Simple SQL注入漏洞

Source
https://github.com/e-renna/CVE-2019-9053
Associated Vulnerability
Title:CMS Made Simple SQL注入漏洞 (CVE-2019-9053)
Description:An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
Description
CVE-2019-9053 Exploit for Python 3
Readme
# CVE-2019-9053

CVE-2019-9053 Exploit for Python 3

Last tested: 28-12-2021

Tested on: Python 3.10.1

Original Exploit Source: https://www.exploit-db.com/exploits/46635



Users take full responsibility for any actions performed using this tool.

If these terms are not acceptable to you, then do not use this tool.

Please use this tool only in environments where you have permissions to perform penetration testing activities.

Please do not use this tool for any malicious purpose.



## Note on wordlist character encoding
This exploit code requires a UTF-8 file as a Wordlist.

For example, if you use rockyou, which comes with Kali-Linux according to some CTF instructions, you need to change its character encoding from Latin-1 to UTF-8.
File Snapshot

 [4.0K]  /data/pocs/7eb946f1552abfcd3483ed019d4d5cbc0fdec4d2
├── [6.5K]  exploit.py
└── [ 747]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →