Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Simple PHP Blog (sphpBlog) 0.4.0 stores the (1) password.txt and (2) config.txt files under the web document root, which allows remote attackers to obtain sensitive information and crack passwords via a direct request to these files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Simple PHP Blog信息泄漏漏洞
Vulnerability Description
一个轻便的blog系统,可评论,上传图片等功能,包含中文语言文件。 Simple PHP Blog (sphpBlog) 0.4.0在web文档root目录下存储(1)password.txt和(2)config.txt文件,远程攻击者可以通过直接请求这些文件,获取敏感信息并破解密码。
CVSS Information
N/A
Vulnerability Type
N/A