Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP remote file inclusion vulnerability in admin/lib_action_step.php in Hot Open Tickets (HOT) 11012004_ver2f, when register_globals is enabled, allows remote attackers to include arbitrary files via the GLOBALS[CLASS_PATH] parameter. NOTE: this issue might be resultant from a global overwrite vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Hot Open Tickets admin/lib_action_step.php 远程文件包含漏洞
Vulnerability Description
Hot Open Tickets (HOT) 11012004_ver2f中的admin/lib_action_step.php存在PHP远程文件包含漏洞,当启用register_globals时,远程攻击者可通过GLOBALS[CLASS_PATH]参数来包含任意文件。注意:此问题可能是由于全域重写漏洞造成。
CVSS Information
N/A
Vulnerability Type
N/A