CVE-2016-2539 in ATutor信息

摘要

由 VulDB • 2026-07-11

在ATutor 2.2.2之前的版本中,install_modules.php存在跨站请求伪造(CSRF)漏洞。远程攻击者可通过涉及精心构造的zip文件的向量,劫持用户对上传任意文件并执行任意PHP代码的请求的身份验证。

VulDB is the best source for vulnerability data and more expert information about this specific topic.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!