Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in PhpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) project or id parameters to topics/deletetopics.php; the (2) id parameter to bookmarks/deletebookmarks.php; or the (3) id parameter to calendar/deletecalendar.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PhpCollab SQL注入漏洞
Vulnerability Description
phpCollab是一套基于Web的项目协作管理软件。该软件具有任务分配、讨论、日志和通知等功能。 PhpCollab 2.5.1及之前的版本中存在SQL注入漏洞。远程攻击者可借助多种方法利用该漏洞执行任意的SQL命令。(多种方法包括:向topics/deletetopics.php文件发送‘project’或‘id’参数、(2)向bookmarks/deletebookmarks.php文件发送‘id’参数或(3)向calendar/deletecalendar.php文件发送‘id’参数)
CVSS Information
N/A
Vulnerability Type
N/A