Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
home.php in ARSC (Really Simple Chat) 1.0.1 and earlier allows remote attackers to determine the full pathname of the web server via an invalid language in the arsc_language parameter, which leaks the pathname in an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ARSC Really Simple Chat存在路径信息泄露漏洞
Vulnerability Description
ARSC Really Simple Chat是一款基于PHP和MySQL相结合的WEB聊天程序程序,可以运行在Unix和Linux操作系统下,也可运行在Microsoft Windows操作系统平台下。 ARSC Really Simple Chat由于对部分错误WEB请求参数处理存在问题可导致绝对路径泄露。 攻击者可以对ARSC Really Simple Chat系统中的home.php脚本参数arsc_language提交不存在的变量,可导致相关绝对路径泄露给攻击者。 攻击者可以通过这些信息,对目
CVSS Information
N/A
Vulnerability Type
N/A