Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
phpwcms 1.2.5-DEV allows remote attackers to obtain sensitive information via a direct request for (1) files.public-userroot.inc.php or (2) files.private.additions.inc.php in include/inc_lib/, which reveals the path in various error messages.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
phpwcms 'iles.public-userroot.inc.php或files.private.additions.inc.php'敏感信息泄露漏洞
Vulnerability Description
phpwcms 1.2.5-DEV存在敏感信息泄露漏洞。远程攻击者可以通过直接请求在include/inc_lib/中的(1)files.public-userroot.inc.php或(2)files.private.additions.inc.php,导致系统在出错消息内泄露路径,从而获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A