Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
BigTree 4.3 allows full path disclosure via authenticated admin/news/ input that triggers a syntax error. NOTE: This has been disputed with the following reasoning: "The issue reported requires full developer level access to the content management system where cross site scripting is not an issue -- you already have full control of the CMS including running arbitrary PHP.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fastspot BigTree 信息泄露漏洞
Vulnerability Description
Fastspot BigTree是美国Fastspot公司的一套基于PHP和MySQL的开源内容管理系统(CMS)。 Fastspot BigTree 4.3版本中的admin/news/页面存在信息泄露漏洞。攻击者可利用该漏洞获取路径信息。
CVSS Information
N/A
Vulnerability Type
N/A