Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in includes/functions/banners-external.php in phpBP 2 RC3 (2.204) FIX 4 allows remote attackers to execute arbitrary SQL commands via the id parameter in a banner_out action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
phpBP 'banners-external.php' 远程SQL注入漏洞
Vulnerability Description
PHPBP是在波兰广泛使用的网站内容管理系统。 PHPBP的includes/functions/banners-external.php脚本文件中没有正确地验证对id参数的输入,远程攻击者通过提交特制的SQL查询请求执行SQL注入攻击。 以下是有漏洞的代码段: ... 3 function banner_out() //zlicza ilosc klikniec na banner 4 { 5 global $conf; 6 7 if($_GET['id']) 8 { 9 SQLvalidate($_P
CVSS Information
N/A
Vulnerability Type
N/A