漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
Multiple PHP remote file inclusion vulnerabilities in TeamCal Pro 3.1.000 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the CONF[app_root] parameter to (1) tcuser.class.php, (2) absencecount.inc.php, (3) avatar.inc.php, (4) csvhandler.class.php, (5) functions.tcpro.php, (6) header.html.inc.php, (7) joomlajack.tcpro.php, (8) menu.inc.php, (9) other.inc.php, (10) tcabsence.class.php, (11) tcabsencegroup.class.php, (12) tcallowance.class.php, (13) tcannouncement.class.php, (14) tcconfig.class.php, (15) tcdaynote.class.php, (16) tcgroup.class.php, (17) tcholiday.class.php, (18) tclogin.class.php, (19) tcmonth.class.php, (20) tctemplate.class.php, (21) tcusergroup.class.php, or (22) tcuseroption.class.php in includes/, possibly a related issue to CVE-2006-4845.
漏洞信息
N/A
漏洞
N/A
漏洞
TeamCal Pro 多个代码注入漏洞
漏洞信息
TeamCal Pro存在多个PHP远程文件包含漏洞,远程攻击者可以借助以下文件中CONF[app_root]参数的一个URL行任意PHP代码:(1)tcuser.class.php, (2)absencecount.inc.php, (3)avatar.inc.php, (4)csvhandler.class.php, (5)functions.tcpro.php, (6)header.html.inc.php, (7)joomlajack.tcpro.php, (8)menu.inc.php, (9)
漏洞信息
N/A
漏洞
N/A