Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in Social Site Generator (SSG) 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) sgc_id parameter to display_blog.php, (2) scm_mem_id parameter to social_my_profile_download.php, and the (3) catid parameter to social_forum_subcategories.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Social Site Generator多个SQL注入漏洞
Vulnerability Description
Social Site Generator(SSG)是一款社交网络系统 (SNS)平台构建工具。 Social Site Generator2.0版本中存在多个SQL注入漏洞。远程攻击者可以借助(1)对display_blog.php的sgc_id参数,(2)对social_my_profile_download.php的scm_mem_id参数,以及(3)对social_forum_subcategories.php的catid参数,执行任意SQL指令。
CVSS Information
N/A
Vulnerability Type
N/A