Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SaveWebPortal 3.4 allows remote attackers to execute arbitrary PHP code via a direct request to admin/PhpMyExplorer/editerfichier.php, then editing the desired file to contain the PHP code, as demonstrated using header.php in the fichier parameter. NOTE: it is possible that this vulnerability stems from PhpMyExplorer, which is a separate package.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SaveWebPortal editerfichier.php PHP代码注入漏洞
Vulnerability Description
SaveWebPortal 3.4允许远程攻击者借助于对admin/PhpMyExplorer/editerfichier.php页面的直接请求执行任意PHP代码,然后编辑包含PHP代码的目标文件,如使用fichier参数中的header.php页面。注:该漏洞可能源于PhpMyExplorer,其是一个单独的软件包。
CVSS Information
N/A
Vulnerability Type
N/A