Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in register.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OWL Instranet Knowledgebase 'register.php'SQL注入漏洞
Vulnerability Description
Owl是一个多用户文档仓库(知识库),用PHP写的文档管理和/或文档管理系统(DMS),可以为一个公司、小企业、人群或者你自己、把文件/文档发布到网上。 Steve Bourgeois和Chris Vincent Owl Intranet Knowledgebase 0.95以及之前的版本中的register.php存在SQL注入漏洞。远程攻击者可以借助用户名参数,执行任意的SQL指令。
CVSS Information
N/A
Vulnerability Type
N/A