Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Static code injection vulnerability in administration/install.php in YVS Image Gallery allows remote attackers to inject arbitrary PHP code into functions/db_connect.php via unspecified vectors. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
YVS Image Gallery 代码注入漏洞
Vulnerability Description
YVS Image Gallery是一款基于WEB的图库程序。 YVS Image Gallery中的administration/install.php中存在静态代码注入漏洞。远程攻击者可利用该漏洞通过未明向量,注入任意PHP代码到functions/db_connect.php脚本。
CVSS Information
N/A
Vulnerability Type
N/A