漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
Multiple unrestricted file upload vulnerabilities in w-Agora (Web-Agora) allow remote attackers to upload and execute arbitrary PHP code (1) via a forum message with an attached file, which is stored under forums/hello/hello/notes/ or (2) by using browse_avatar.php to upload a file with a double extension, as demonstrated by .php.jpg.
漏洞信息
N/A
漏洞
N/A
漏洞
W-Agora 多个未限制文件上传漏洞
漏洞信息
w-Agora (Web-Agora)中存在未限制文件上传漏洞。远程攻击者可以(1)借助带有附件的储存在forums/hello/hello/notes/文件下的forum信息或(2)使用browse_avatar.php上传包含双扩展名的文件,比如.php.jpg,来上传和执行任意的PHP代码。
漏洞信息
N/A
漏洞
N/A