Discuz! v7. 2 injection vulnerability analysis and exploit-vulnerability warning-the black bar safety net

Vulnerability analysis: 文件 ./manyou/sources/notice.php The relevant code: $appid = intval$GET'appid'; $db-query"DELETE FROM $tablepremyinvite WHERE appid='$appid' AND touid='$discuzuid'"; showmessage'manyou:done', 'userapp.php script=notice&action=invite'; elseif$option == 'deluserapp' $hash =...

Discuz! admincp.php xss bug

漏洞存在于文件admin/login.inc.php里$urlforward没有被过滤导致xss漏洞: input type="hidden" name="urlforward" value="$urlforward" 2008-02 www.Discuz.net http://127.0.0.1/discuz/admincp.php?urlforward=%22%3E%3Cscript%3Ealert/xss/%3C/script%3E 管理员或版主前台登录,但未登录后台时触发...

Code injection

Static code injection vulnerability in admincp.php in DeluxeBB 1.2 and earlier allows remote authenticated administrators to inject arbitrary PHP code into logs/cp.php via the URI...

CVE-2008-2195

Static code injection vulnerability in admincp.php in DeluxeBB 1.2 and earlier allows remote authenticated administrators to inject arbitrary PHP code into logs/cp.php via the URI...

the pw of a back door way-vulnerability warning-the black bar safety net

data\bbscache\adminrecord. php is recording the background to the landing and operation,we see how the operation of this file: admin\admincp.php: $bbsrecordfile=DP."data/bbscache/adminrecord.php"; if! fileexists$bbsrecordfile writeover$bbsrecordfile,"? php die;?& gt;\n"; //这个 if 只是 说 如果 不 存在...

CVE-2006-5561

SQL injection vulnerability in admincp.php in Discuz! GBK 5.0.0 allows remote attackers to execute arbitrary SQL commands via the cdbauth cookie...

CVE-2006-5561

SQL injection vulnerability in admincp.php in Discuz! GBK 5.0.0 allows remote attackers to execute arbitrary SQL commands via the cdbauth cookie...