CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1 matches found

seebug.org•added 2014/02/17 12:0 a.m.•20 views

ecshop绕过原密码校验直接修改用户密码（安全隐患）

简要描述：最新版本也存在此问题详细说明：该漏洞有个前提，需要会员系统整合ucenter 问题出在 user.php $action == 'acteditpassword' $oldpassword = isset$POST'oldpassword' ? trim$POST'oldpassword' : ''; $newpassword = isset$POST'newpassword' ? trim$POST'newpassword' : ''; $userid = isset$POST'uid' ? intval$POST'uid' : $userid; $code =...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by