Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP remote file inclusion vulnerability in cuenta/cuerpo.php in C. Desseno YouTube Blog (ytb) 0.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the base_archivo parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
YouTube Blog 'base_archivo'参数文件包含漏洞
Vulnerability Description
YouTube Blog是包含有有关YouTube新闻及社区内容的网络博客。 cuenta/cuerpo.php文件中没有正确地验证对base_archivo参数的输入便用于包含文件,允许远程攻击者包含本地或外部资源的任意文件。成功利用这个漏洞要求打开了register_globals。
CVSS Information
N/A
Vulnerability Type
N/A