Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple unspecified vulnerabilities in lib-common.php in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to include arbitrary local files and execute arbitrary code via (1) absolute paths in unspecified parameters and (2) the language cookie, as demonstrated for code execution using error.log.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Geeklog 多个未明漏洞
Vulnerability Description
Geeklog 1.4.0到1.4.0sr1版以及1.3.11到1.3.11sr4版的lib-common.php中存在多个未明漏洞。远程攻击者可以借助(1)未明参数中的绝对路径和(2)language cookie包含任意本地文件并执行任意代码,如使用error.log执行代码所演示的那样。
CVSS Information
N/A
Vulnerability Type
N/A