Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the default_cms_lang parameter to an admin script, as demonstrated by admin/addbookmark.php, a different vulnerability than CVE-2008-5642.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CMS Made Simple 'lib/translation.functions.php'文件目录遍历漏洞
Vulnerability Description
CMS Made Simple(简称CMSMS)作为一款优秀的轻量级开源内容管理系统(CMS)。 CMS Made Simple 1.8.1之前版本中的lib/translation.functions.php文件中存在目录遍历漏洞。远程攻击者可以借助管理脚本的default_cms_lang参数中的“..”(点点)操作符包含并执行任意本地文件。
CVSS Information
N/A
Vulnerability Type
N/A