CNNVD-202601-3386 Information
CNNVD ID
CNNVD-202601-3386
Related CVE
- CNNVD Published: 2026-01-21
Description (Chinese)
Seo Panel是Seo Panel开源的一款免费的搜索引擎优化软件。 Seo Panel 4.9.0之前版本存在SQL注入漏洞,该漏洞源于archive.php页面存在盲SQL注入,可能导致经过身份验证的攻击者操纵数据库查询。
Description (English)
Seo Panel is a free search engine optimization software for Seo Panel. The previous version of Seo Panel 4.9.0 had an injection loophole in SQL, which originated from the blind SQL injection on the archive.php page, which could lead to an identified assailant manipulating the database.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Seo Panel
Published
2026-01-21
Last Modified
2026-02-24
References
https://www.vulncheck.com/advisories/seo-panel-ordercol-blind-sql-injection https://github.com/seopanel/Seo-Panel/issues/209 https://www.seopanel.org/ https://github.com/seopanel/Seo-Panel/releases/tag/4.9.0 https://www.exploit-db.com/exploits/49666 https://access.redhat.com/security/cve/cve-2021-47872
Patch
https://www.seopanel.org/download/
Share on: