Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP remote file inclusion vulnerability in includes/log.inc.php in Telekorn SignKorn Guestbook (SL) 1.3 and earlier, when register_globals is enabled and _SESSION[permission] parameter is set to "yes", allows remote attackers to execute arbitrary PHP code via a URL in the dir_path parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Telekorn SignKorn Guestbook 'log.inc.php'PHP远程文件包含漏洞
Vulnerability Description
Telekorn SignKorn Guestbook (SL) 1.3及更早版本的includes/log.inc.php中的PHP远程文件包含漏洞,在启用register_globals且_SESSION[permission]参数设置为"yes"时,远程攻击者可以通过dir_path参数中的URL执行任意PHP代码。
CVSS Information
N/A
Vulnerability Type
N/A