PHP168 V6.02整站系统远程执行任意代码漏洞

PHP168在某些函数里运用了eval函数,但是某数组没有初试化,导致可以提交任意代码执行. 漏洞出在inc/function.inc.php里面.gethtmlurl这个函数. function gethtmlurl global $rsdb,$aid,$fidDB,$webdb,$fid,$page,$showHtmlType,$HtmlType; $id=$aid; if$page1 $page=1; $postdbposttime=$rsdbposttime; if$showHtmlTypebencandy$id...

waraxe-2007-SA059.txt

waraxe-2007-SA059 - XSS in WordPress 2.3 ==================================================================== Author: Janek Vind "waraxe" Date: 27. October 2007 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-59.html Target software description: WordPress is a state-of-the-art semanti...

Phorum 5.1.20 - includecontrolcenterusers.php Multiple Method Privilege Escalations

Phorum 5.1.20 - includecontrolcenterusers.php Multiple Method Privilege Escalations source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues,...

waraxe-2005-SA043.txt

================================================================================ waraxe-2005-SA043 ================================================================================ Sql injection in Phorum 5.0.20 and earlier...