Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in login.php in ApPHP PHP MicroCMS 1.0.1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) user_name and (2) password variables, possibly related to include/classes/Login.php. NOTE: some of these details are obtained from third party information. NOTE: the password vector might not be vulnerable.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apphp PHP MicroCMS 多个SQL注入漏洞
Vulnerability Description
ApPHP PHP MicroCMS 1.0.1版本中的login.php文件中存在多个SQL注入漏洞。当magic_quotes_gpc禁用时,远程攻击者可以借助(1)user_name和(2)password变量来执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A