Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php in Tribiq CMS 5.0.10a, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the template_path parameter. NOTE: it was later reported that this issue also affects 5.0.12c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tribiq CMS 'header.inc.php'目录遍历漏洞
Vulnerability Description
Tribiq CMS 5.0.10a版本中的templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php存在目录遍历漏洞。当register_globals被激活而magic_quotes_gpc被中止时,远程攻击者可以借助emplate_path参数中的目录遍历序列,放入和运行任意的本地文件。
CVSS Information
N/A
Vulnerability Type
N/A