Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in php-stats.recphp.php in PHP-Stats 0.1.9.1b and earlier allow remote attackers to execute arbitrary code via a leading dotted-quad IP address string in the (1) PC-REMOTE-ADDR HTTP header, which is inserted into $_SERVER['HTTP_PC_REMOTE_ADDR'], or (2) ip parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP-Stats php-stats.recphp.php SQL注入漏洞
Vulnerability Description
PHP-Stats 0.1.9.1b及之前版本的php-stats.recphp.php中存在多个SQL注入漏洞。远程攻击者可以借助(1)PC-REMOTE-ADDR HTTP头中的第一个dotted-quad IP地址字符串,执行任意代码。该字符串会被注入到$_SERVER['HTTP_PC_REMOTE_ADDR']或(2)ip参数中。
CVSS Information
N/A
Vulnerability Type
N/A