Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
(1) Amazing Little Poll and (2) Amazing Little Picture Poll store sensitive information under the web root with insufficient access control, which allows remote attackers to read the admin password via a direct request for the lp_settings file (lp_settings.inc or lp_settings.php).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Amazing Little Picture Poll 敏感信息泄露漏洞
Vulnerability Description
(1) Amazing Little Poll和(2) Amazing Little Picture Poll将敏感信息存储在Web根目录下,但没有充分的访问控制,远程攻击者可以通过直接请求lp_settings文件(lp_settings.inc或lp_settings.php)来读取管理密码。
CVSS Information
N/A
Vulnerability Type
N/A