Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote attackers to execute arbitrary SQL commands via the cmbdomain parameter to (1) checktransferstatus.php, (2) checktransferstatusbck.php, or (3) additionalsettings.php; or (4) invno parameter to payinvoiceothers.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Iscripts AutoHoster SQL注入漏洞
Vulnerability Description
Iscripts AutoHoster是美国Iscripts公司的一套虚拟主机管理和客户管理软件。该软件支持实时域名注册、主机计费和客户管理等。 iScripts AutoHoster 2.4版本中存在SQL注入漏洞,该漏洞源于(1)checktransferstatus.php脚本(2)checktransferstatusbck.php脚本或(3)additionalsettings.php脚本没有正确过滤cmbdomain参数,payinvoiceothers.php脚本没有正确过滤invno参数。
CVSS Information
N/A
Vulnerability Type
N/A