漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
Directory traversal vulnerability in index.php in L2J Statistik Script 0.09 and earlier, when register_globals is enabled and magic_quotes is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by index.php.
漏洞信息
N/A
漏洞
N/A
漏洞
L2J Statistik Script 'Index.PHP' 目录遍历漏洞
漏洞信息
L2J Statistik Script 0.09及之前版本的index.php中存在目录遍历漏洞。当register_globals被激活而magic_quotes被禁用时,远程攻击者可以借助页参数中的..,来包含和运行任意的本地文件。通过注入PHP序列到一个Apache HTTP服务器登录文件就会使它被index.php包含。
漏洞信息
N/A
漏洞
N/A