Submit #268418: ForU CMS ForU CMS dev Official version Local File Include
| Title | ForU CMS ForU CMS dev Official version Local File Include |
|---|---|
| Description | ForU CMS在2020-06-23之前的版本中发现了一个被归类为关键的漏洞。该问题影响了文件channel.php.其对变量$t_path $channel['c_cmodel']的任意操纵导致了本地文件包含攻击。 |
| Source | ⚠️ https:/ |
| User | Mi2ac1e (UID 61142) |
| Submission | 01/16/2024 14:09 (2 years ago) |
| Moderation | 01/19/2024 12:06 (3 days later) |
| Status | Accepted |
| VulDB entry | 251552 [ForU CMS up to 2020-06-23 cms_admin.php a_name sql injection] |
| Points | 17 |