得推校园O2O系统前台GetShell
漏洞分析
漏洞触发点在/source/index/ueditor.ctrl.php中第177行:
public function onUeRemote(){
err...
SQL语句执行错误: SELECT `tid`, `tagname` FROM `emlog_tag` WHERE `tid` IN (,159)
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '159)' at line 1