CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1 matches found

seebug.org•added 2014/07/18 12:0 a.m.•21 views

74cms (20140709) 任意文件读取 & 注入漏洞

简要描述： 20140709. 详细说明： 20140709的74cms 在plus/weixin.php中因为默认的这个文件都会checkSignature 来检测token 但是来看看74cms的根本就不需要token。 $wechatObj = new wechatCallbackapiTest$dbhost,$dbuser,$dbpass,$dbname; ifisset$REQUEST'echostr' $wechatObj-valid; elseifisset$REQUEST'signature' $wechatObj-responseMsg; 来看看valid publ...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by