Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP remote file inclusion vulnerability in common/visiteurs/include/library.inc.php in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences (phpMyConference) 8.0.2 and possibly other products, allows remote attackers to execute arbitrary PHP code via a URL in the lvc_modules_dir parameter. NOTE: CVE disputes this vulnerability, because the inclusion occurs in a function that is not called during a direct request to library.inc.php
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
J-Pierre DEZELUS Les Visiteurs 安全漏洞
Vulnerability Description
J-Pierre DEZELUS Les Visiteurs 2.0.1中的common/visiteurs/include/library.inc.php当用于phpMyConferences (phpMyConference) 8.0.2及可能的其他产品中时存在安全漏洞,远程攻击者可以通过在lvc_modules_dir参数内的URL执行任意PHP代码。注:CVE对此漏洞有争议,因为此包含问题是发生在直接请求library.inc.php时没有调用到的函数内。
CVSS Information
N/A
Vulnerability Type
N/A