Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple directory traversal vulnerabilities in PHP-Fusion Forum Rank System 6 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the settings[locale] parameter to (1) forum.php and (2) profile.php in infusions/rank_system/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Forum Rank System 'settings[locale]' 参数多个目录遍历漏洞
Vulnerability Description
PHP-Fusion Forum Rank System 6版本存在多个目录遍历漏洞。远程攻击者可以借助到infusions/rank_system/中的(1)forum.php和(2)profile.php的settings[locale]参数中的"..",放入和运行任意的本地文件。
CVSS Information
N/A
Vulnerability Type
N/A