finecms 1.7.2 Client.Class.php SQL注入漏洞

No description provided by source...

Finecms 1.7.2 injection vulnerability-vulnerability warning-the black bar safety net

漏洞 文件 :Client.Class.php 2 9 the rows at public static function getuserip ifgetenv'HTTPCLIENTIP' && strcasecmpgetenv'HTTPCLIENTIP', 'unknown' $onlineip = getenv'HTTPCLIENTIP'; elseifgetenv'HTTPXFORWARDEDFOR' && strcasecmpgetenv'HTTPXFORWARDEDFOR', 'unknown' $onlineip = getenv'HTTPXFORWARDEDFOR';...