Vlcms xss漏洞

...

Code Execution Vulnerability in vlcms v1.2.0

vlcms is a management system based on Thinkphp framework to solve the promotion of handicraft. A code execution vulnerability exists in vlcms v1.2.0. The vulnerability is due to modify the site settings, the parameter values into the cache file process fails to filter due to the attacker can use...

Vlcms latest version has a file write vulnerability in the frontend

vlcms is a management system developed by Xigu software team based on OneThink framework to solve the promotion of handicraft. Vlcms latest version of the front-end file writing vulnerability, the vulnerability exists in the location of /Application/Callback/Controller/BaseController.class.php,...

SQL Injection and Arbitrary File Read Vulnerabilities in vlcms_v1.2 Latest Version

vlcms Xigu software team based on the OneThink framework to develop a solution to the promotion of handicraft management system. vlcms page media parameter $giftid and parameter $gameid are SQL injection vulnerability, attackers can obtain database information through the loophole, constituting...

vlcms_v1. 2 arbitrary file read vulnerability

No description provided by source...

vlcms \Application\Media\Controller\DownController.class.php arbitrary File Download

No description provided by source...