Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple directory traversal vulnerabilities in OI.Blogs 1.0.0, when magic_quotes_gpc is disabled, allow remote attackers to read arbitrary files via directory traversal sequences in the (1) theme parameter to loadStyles.php and the (2) scripts parameter to javascript/loadScripts.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Openinferno OI.Blogs多个目录遍历漏洞
Vulnerability Description
OI.Blogs存在多个目录遍历漏洞。当magic_quotes_gpc被禁止时,远程攻击者可以借助(1)脚本loadStyles.php的theme参数和(2)脚本javascript/loadScripts.php的scripts参数的目录遍历序列,读取任意的文件。
CVSS Information
N/A
Vulnerability Type
N/A