Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in Advanced Electron Forum (AEF) 1.x, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the filename in an uploaded attachment. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Anelectron Advanced Electron Forum SQL注入漏洞
Vulnerability Description
Advanced Electron Forum 存在SQL注入漏洞,当magic_quotes_gpc被禁用时,远程攻击者可以通过长传附件的文件名执行任意SQL命令。注意:该漏洞的出处未知,相关细节信息由第三方提供。
CVSS Information
N/A
Vulnerability Type
N/A