| Titel | Xunrui CMS content system V4.61There is an information leak. |
|---|
| Beschreibung | In the content system V4.61 of Xunrui CMS, a bug was found that Guilei thought was problematic, but the components affected by the bug were
/dayrui/Fcms/View/system_log.html
/dayrui/Fcms/Temp/Web/mobile/api.php
/dayrui/My/View/main.html
/dayrui/My/Config/Install.txt
Users who enter the path can directly see sensitive information. This attack can be launched remotely.It will not be used or misused, and the user can control the path of the input cover, which will affect the integrity of the whole program. |
|---|
| Quelle | ⚠️ https://github.com/2714925725/CMS-bug/blob/main/Information disclosure-1.md |
|---|
| Benutzer | mengleng (UID 43260) |
|---|
| Einreichung | 26.03.2023 00:46 (vor 3 Jahren) |
|---|
| Moderieren | 28.03.2023 22:22 (3 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 224240 [Xunrui CMS 4.61 system_log.html Information Disclosure] |
|---|
| Punkte | 20 |
|---|