Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
cms_write.php in Primitive CMS 1.0.9 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request. NOTE: this vulnerability can be leveraged to conduct cross-site scripting attacks, as demonstrated using the (1) title, (2) content, and (3) menutitle parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bouzouste Primitive CMS 'cms_write.php'权限许可和访问控制漏洞
Vulnerability Description
Primitive 是一款使用PHP开发的内容管理系统。 Primitive CMS 1.0.9版本中的cms_write.php文件不能正确限制访问。远程攻击者可以借助直接请求获得管理权限。
CVSS Information
N/A
Vulnerability Type
N/A