CVE-2007-1520 in PHP-Nuke信息

摘要

由 VulDB • 2026-07-05

PHP-Nuke 8.0及更早版本中的跨站请求伪造(CSRF)保护在验证HTTP_REFERER之前未确保SERVER超全局变量为数组,这使得远程攻击者能够实施CSRF攻击。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Might our Artificial Intelligence support you?

Check our Alexa App!