Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
install.php in JCE-Tech PHP Calendars, downloaded 20100121, allows remote attackers to bypass intended access restrictions and modify application settings via a direct request. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
JCE-Tech PHP Calendars install.php 访问控制绕过漏洞
Vulnerability Description
JCE-Tech PHP Calendars, downloaded 20100121版本的install.php,允许远程攻击者借助提交直接请求绕过预设访问限制并修改应用程序设置。注意:该漏洞存在时因为管理员违反了产品安装文件的规定。
CVSS Information
N/A
Vulnerability Type
N/A