Primary

Context

ChanCMS SQL Injection Vulnerability in Search Function

Vulnerability

A SQL injection vulnerability has been identified in ChanCMS versions through 3.3.1. The issue arises in the search interface, where input manipulation can lead to unauthorized database access. This vulnerability can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows for SQL injection, enabling attackers to manipulate database queries. This could lead to unauthorized data access, data modification, or in some cases, executing commands on the server via database command execution features.

Reproduction

To reproduce this vulnerability, log into ChanCMS with the default credentials (username: 'chancms', password: '123456'). Once logged in, navigate to the search interface and input the crafted SQL injection payload. This will trigger the vulnerability by exploiting the application's SQL query handling.

Added: Sep 8, 2025, 11:26 PM

Updated: Sep 8, 2025, 11:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.7

remediation

0.0

relevance

0.5

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.7

remediation

0.0

relevance

0.5

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ChanCMS SQL Injection Vulnerability in Search Function

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating