Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Aztek Forum 'common/config.php'自变量重写漏洞
Vulnerability Description
Aztek Forum 4.00版本的common/config.php中存在自变量重写漏洞。远程攻击者可以借助与(1)POST,(2)GET,(3)COOKIE,和(4)SERVER superglobal排列上的问题摘要有关的向量,重写任意程序自变量并执行其他为验证活动,例如利用index/common_actions.php来拷贝任意文件。
CVSS Information
N/A
Vulnerability Type
N/A