Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in index.php in plx Web Studio (aka plxWebDev) plx Pay 3.2 and earlier allows remote attackers to include and execute arbitrary local files, or obtain user credentials and other sensitive information, via a .. (dot dot) in the read parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Plx Pay Read Parameter 'index.php'目录遍历漏洞
Vulnerability Description
plx Web Studio (aka plxWebDev) plx Pay 3.2及更早版本中的index.php存在目录遍历漏洞,远程攻击者可以通在read参数(该参数中包含..)来包含和执行任意本地文件或者获取用户凭证和其他敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A