漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
SQL injection vulnerability in functions/functions_filters.asp in Web Wiz Forums before 8.05a (MySQL version) does not properly filter certain characters in SQL commands, which allows remote attackers to execute arbitrary SQL commands via \"' (backslash double-quote quote) sequences, which are collapsed into \'', as demonstrated via the name parameter to forum/pop_up_member_search.asp.
漏洞信息
N/A
漏洞
N/A
漏洞
Web Wiz Forums functions_filters.asp SQL注入漏洞
漏洞信息
Web Wiz Forums 8.05a之前版本(MySQL版本n)的functions/functions_filters.asp中存在SQL注入漏洞。它没有正确的过滤SQL指令中的特定字符,这使得远程攻击者可以借助\"'序列,执行任意的SQL指令。
漏洞信息
N/A
漏洞
N/A