Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/header via the header parameter. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2009-0250. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ryneezy phosheezy 代码注入漏洞
Vulnerability Description
Ryneezy phoSheezy 0.2版本中的admin.php存在静态代码注入漏洞。远程认证管理员可以借助页眉参数,注入任意的PHP代码到config/header。
CVSS Information
N/A
Vulnerability Type
N/A