Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP file inclusion vulnerability in loginform-inc.php in Oliver (formerly Webshare) 1.2.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the conf[motdfile] parameter, which is accessed by the file_exists function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Oliver LoginForm Inc.PHP远程文件包含漏洞
Vulnerability Description
Oliver (formerly Webshare)中的loginform-inc.php存在PHP文件包含漏洞,当启用register_globals时,远程攻击者可以通过一个在conf[motdfile]参数内UNC共享路径名或者本地文件路径名(由file_exists函数访问),来执行任意PHP代码。
CVSS Information
N/A
Vulnerability Type
N/A