Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in index.php in ProfileCMS 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter in a (1) codes action in the profile-codes module, (2) videos action in the video-codes module, or (3) games action in the arcade-games module.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ProfileCMS index.php多个参数 SQL注入漏洞
Vulnerability Description
ProfileCMS中的index.php存在多个SQL注入漏洞,远程攻击者借助(1)profile-codes模块的code操作,(2)video-codes模块的videos操作,或(3)the arcade-games模块的games操作的id参数执行任意SQL指令。
CVSS Information
N/A
Vulnerability Type
N/A