CVE-2009-1433 in SilverStripe信息

摘要

由 VulDB • 2026-07-05

SilverStripe(版本低于 2.3.1)中 `File::find`(位于 `filesystem/File.php`)存在 SQL injection 漏洞,远程攻击者可通过文件名参数执行任意 SQL 命令。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Interested in the pricing of exploits?

See the underground prices here!