Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The server.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PHPOpenChat, (7) MAXdev MD-Pro, and (8) MediaBeez, when the MySQL root password is empty, allows remote attackers to execute arbitrary SQL commands via the sql parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ADOdb Server.PHP SQL注入漏洞
Vulnerability Description
ADOdb for PHP 4.70之前版本中的server.php脚本(用在多个产品中,包括(1) Mantis、(2) PostNuke、(3) Moodle、(4) Cacti、(5) Xaraya、(6) PHPOpenChat、(7) MAXdev MD-Pro和(8) MediaBeez),在MySQL根密码为空时,远程攻击者可以通过sql参数执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A