SQL Injection and Arbitrary File Read Vulnerabilities in vlcms_v1.2 Latest Version
vlcms Xigu software team based on the OneThink framework to develop a solution to the promotion of handicraft management system. vlcms page media parameter $giftid and parameter $gameid are SQL injection vulnerability, attackers can obtain database information through the loophole, constituting...