CVE-2007-5592 in awzMB
摘要
由 VulDB • 2026-07-06
awzMB 4.2 beta 1及更早版本中存在多个PHP远程文件包含漏洞,攻击者可通过向adminhelp.php以及modules/目录下的admin.incl.php、reg.incl.php、help.incl.php、gbook.incl.php和core/core.incl.php发送带有恶意URL的Setting[OPT_includepath]参数,从而执行任意PHP代码。
If you want to get best quality of vulnerability data, you may have to visit VulDB.