Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some sources mention the escape_sqlData, implode_sql, and implode_sqlIn functions, but these are protection schemes, not the vulnerable functions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Free LAN In(tra|ter)net Portal (FLIP) 多个SQL注入漏洞
Vulnerability Description
Free LAN In(tra|ter)net Portal (FLIP) 1.0-RC3版本之前的版本中存在多个SQL注入漏洞。远程攻击者可以借助未明向量,执行任意SQL指令。注意:一些资料指出构建escape_sqlData,implode_sql,和implode_sqlIn函数, 但这些只是保护机制,不是出现漏洞的函数。
CVSS Information
N/A
Vulnerability Type
N/A