Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
phpimageview.php in PHPImageView 1.0 allows remote attackers to obtain sensitive information via the pw=show option, which invokes the phpinfo function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHPImageView跨站脚本执行漏洞
Vulnerability Description
PHPImageView是一款简单的图象显示程序。 PHPImageView对用户提交的URL请求数据缺少正确充分的检查,可导致远程攻击者进行跨站脚本执行攻击。 当返回包含用户输入的错误信息时,PHPImageView没有过滤脚本代码和HTML标记,可导致攻击者提供包含恶意脚本代码的信息给PHPImageView,当PHPImageView生成的错误信息由其他用户浏览时,可导致恶意代码在浏览用户的浏览器上被执行,使用户基于Cookie认证的信息被泄露。 另外,存在漏洞可以调用phpinfo()函数,导致攻
CVSS Information
N/A
Vulnerability Type
N/A