4 matches found
Code injection
An issue in WUZHI CMS v.4.1.0 allows a remote attacker to execute arbitrary code via the setchache method of the function\common.func.php file...
CVE-2020-19551
Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong...
PHPMyWind 5.1 /include/common.func.php 代码执行漏洞
/include/common.func.php/字符串转数组/ if!functionexists'String2Array' function String2Array$data if$data == '' return array; @eval"$array = $data;"; return $array; $data变量进入eval执行,当传入$data为:111|222$phpinfo执行的PHP语句为:@eval"$array = array"1"="111|222$phpinfo","2"="";;"页面返回:...
BlueCMS 1.6 include-common.func.php SQL注入漏洞
No description provided by source...