漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in PHProjekt 5.2.0, when magic_quotes_gpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via (1) unspecified vectors to the (a) calendar and (2) search modules, and an (2) unspecified cookie when the user logs out.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHProjekt 多个SQL注入漏洞
Vulnerability Description
PHProjekt 5.2.0中存在多个SQL注入漏洞。当magic_quotes_gpc被禁用时,远程认证用户可以借助提交到(a)calendar和(2)search模块的未明向量和未明的cookie,执行任意的SQL指令。
CVSS Information
N/A
Vulnerability Type
N/A