PHPB2B 最新版sql注射无限充值（官网demo成功）

简要描述： rt 详细说明： 看到注册用户处 ifisset$POST'register' $iscompany = false; $ifneedcheck = false; $registertype = trim$POST'register'; $registertypename = trim$POST'typename'; pbsubmitcheck'data'; $defaultmembergroupidres = $pdb-GetRow"SELECT FROM $tbprefixmembertypes WHERE name='".$registertypename."'";...

Code injection

The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack...

CVE-2008-3216

The CVE-2008-3216 entry concerns projectL 1.001: the save function in br/prefmanager.d creates a file named projectL.prf in the current working directory, enabling local users to overwrite arbitrary files via a symlink attack. Affected component is the save routine in br/prefmanager.d; root cause...

CVE-2008-3216

The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack...

CVE-2008-3216

The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack...

obedit-xss.txt

=============================================== Obedit v3.03 - XSS Vuln. =============================================== Author: Ishkur Impact: XSS and Cookie Alert Patches: in development ------------------------------------------- Affected Software Description:...